Skip to main content
  1. Home
  2. Mobile
  3. News

TrueCaller patches exploit that left millions of Android users vulnerable

Julian Chokkattu
By

truecaller exploit patched
Image used with permission by copyright holder
It seems as though every other day, there’s some kind of potential threat to an Android user’s security. Another security exploit was recently uncovered, but this time it’s related to a dialer app called TrueCaller.

While it’s not malware-related, installing TrueCaller could have left you susceptible to malicious hackers. Cheetah Mobile’s Security Research Lab found a loophole in the app that would have allowed anyone to gain access to TrueCaller user’s private information. TrueCaller used a smartphone’s IMEI number as the identity label of its users.

Recommended Videos

TrueCaller tells you who’s calling. It does so by identifying numbers, and matching them with ones marked by users. You can mark numbers as spam to make the service better and more reliable. As it crowd-sources its data, TrueCaller users have accounts with their name, phone number, home address, gender, and more — it’s this data that was available to malicious hackers through the app’s loophole.

Related

If someone managed to get hold of your IMEI number, they could go to TrueCaller’s website and access all of that information in your account, and even modify it — potentially lifting spam blocks so those calls can make it through again.

Thankfully, TrueCaller has patched the issue, and you should download the latest update through the Google Play store to make sure you’re safe. The company says no user information was compromised.

“We recently found an issue where some user defined information can be retrieved or changed without the original user’s consent, if a third person knows the IMEI number of the original person’s device,” according to the blog post. “We’ve quickly taken steps to fix this issue and have released an update which we strongly suggest all users upgrade to.”

What makes it scary is that more than 100 million Android users who have downloaded the app were vulnerable, and likely more as TrueCaller has been making its way to Cyanogen OS, in phones like Wileyfox, and Blu devices. TrueCaller is also available for Windows, and iOS, but it looks like the app on those operating systems were not affected.

Editors' Recommendations

Topics
Julian Chokkattu
Julian Chokkattu
Former Digital Trends Contributor
Julian is the mobile and wearables editor at Digital Trends, covering smartphones, fitness trackers, smartwatches, and more…
How to view Instagram without an account
An iPhone 15 Pro Max showing Instagram via a web browser.

Instagram is one of the largest social media platforms on the planet. Whether you want to share a family photo, what you had for lunch at your favorite cafe, or a silly video of your cat, Instagram is the place to do it.

Read more
Something odd is happening with Samsung’s two new budget phones
A person holding the Samsung Galaxy A35 and Galaxy A55.

The Samsung Galaxy A35 (left) and Galaxy A55 Andy Boxall / Digital Trends

I’ve been using the Samsung Galaxy A55 for almost two weeks and have now swapped my SIM card over to the Samsung Galaxy A35. These are the latest entries in Samsung's budget-minded Galaxy-A series. In all honestly, I can barely tell the difference between them.

Read more
Learn 14 languages: Get $449 off a lifetime subscription to Babbel
A person using the Babbel app on their smartphone.

Learning a new language no longer requires you to make time for formal classes because there are now several language learning apps that you can tap. One of them is Babbel, and you can currently get a lifetime subscription to the online learning platform for only $150 from StackSocial. That's $449 off its original price of $599, but we don't know how much time is remaining before the offer expires. If you want to take advantage of the 74% discount, it's highly recommended that you complete the transaction immediately.

Why you should buy the Babbel lifetime subscription
A lifetime subscription to Babbel not only unlocks the possibility of learning one or two new languages, as the platform encompasses a total of 14 languages: English, French, Spanish, German, Italian, Portuguese, Swedish, Turkish, Dutch, Polish, Indonesia, Norwegian, Danish, and Russian. You'll be learning your new language of choice with lessons that only take 10 minutes to 15 minutes each to complete, so unlike classes with a rigid schedule, you can learn at your own pace and at any time you're free through Babbel. The lessons cover real-life topics, and they use speech recognition technology to help you master pronunciation. You'll then test yourself through personalized review sessions that will help make sure that you retain all the information that's being taught to you.

Read more