A security researcher said it took United Airlines nearly six months to patch a serious vulnerability that could have been exploited to access customer information and manage flight reservations.
A couple of weeks after United Airlines launched its bug bounty program, software developer and security researcher Randy Westergren started analyzing the company’s Android mobile app which, according to Google Play, currently has between one and five million installs.
The expert created an account for MileagePlus, United’s frequent flyer program, and began analyzing the requests sent by the mobile application.
Leave a reply
