Kanishk Sajnani is an Indian Ethical hacker who has found out serious vulnerabilities in several companies. On 21 May 2017, he published a Blog on Medium.com titled " How I could have travelled the world for free". It went viral in just a couple of days (over 1 lakh hits) with every major News media covering his story. He was able to book an Air India flight from New Delhi to San francisco (Business class) in just 1 Rupee(0.016 $) whereas the original cost was 137k Rupees(2100 $). He did something similar with Spicejet by booking a flight from Ahmedabad to Goa at 99.9% discount. With Cleartrip (Online travel portal) he not only managed to book a free spa but also got paid back for the same. In Faasos, he was able to look-up personal customer details such as Debit/Credit cards, House/Office addresses & much more alongwith ordering food for free. He maintains that his intentions were never to dupe any company & therefore he informed them before anyone can further misuse the exploits. Also, the four companies mentioned above are not the only ones he found bugs in. Others possibly include some E-commerce websites, Government applications, Home services, Educational Institutions, etc. Through his blog, he wanted to inform more people about the possible security lapses & encourage Indian Firms to opt for Bug bounty programmes to counter the same. Agence France-Presse wrote an article on the same (mentioning him) on May 29 2017 which was then distributed to Global news platforms such as , France 24 & many others. Awards/Recognition * Awarded 'The Swag' from HackerOne.
|