AGL 39.94 Decreased By ▼ -0.06 (-0.15%)
AIRLINK 128.50 Decreased By ▼ -0.56 (-0.43%)
BOP 6.84 Increased By ▲ 0.09 (1.33%)
CNERGY 4.70 Increased By ▲ 0.21 (4.68%)
DCL 8.55 No Change ▼ 0.00 (0%)
DFML 41.22 Increased By ▲ 0.40 (0.98%)
DGKC 82.60 Increased By ▲ 1.64 (2.03%)
FCCL 33.05 Increased By ▲ 0.28 (0.85%)
FFBL 73.85 Decreased By ▼ -0.58 (-0.78%)
FFL 11.91 Increased By ▲ 0.17 (1.45%)
HUBC 109.51 Decreased By ▼ -0.07 (-0.06%)
HUMNL 14.26 Increased By ▲ 0.51 (3.71%)
KEL 5.26 Decreased By ▼ -0.05 (-0.94%)
KOSM 7.66 Decreased By ▼ -0.06 (-0.78%)
MLCF 39.20 Increased By ▲ 0.60 (1.55%)
NBP 64.11 Increased By ▲ 0.60 (0.94%)
OGDC 193.25 Decreased By ▼ -1.44 (-0.74%)
PAEL 25.63 Decreased By ▼ -0.08 (-0.31%)
PIBTL 7.33 Decreased By ▼ -0.06 (-0.81%)
PPL 154.00 Decreased By ▼ -1.45 (-0.93%)
PRL 25.47 Decreased By ▼ -0.32 (-1.24%)
PTC 17.44 Decreased By ▼ -0.06 (-0.34%)
SEARL 78.30 Decreased By ▼ -0.35 (-0.45%)
TELE 7.74 Decreased By ▼ -0.12 (-1.53%)
TOMCL 33.50 Decreased By ▼ -0.23 (-0.68%)
TPLP 8.39 Decreased By ▼ -0.01 (-0.12%)
TREET 16.37 Increased By ▲ 0.10 (0.61%)
TRG 56.75 Decreased By ▼ -1.47 (-2.52%)
UNITY 27.50 Increased By ▲ 0.01 (0.04%)
WTL 1.38 Decreased By ▼ -0.01 (-0.72%)
BR100 10,539 Increased By 94 (0.9%)
BR30 31,128 Decreased By -61.3 (-0.2%)
KSE100 98,452 Increased By 653.4 (0.67%)
KSE30 30,702 Increased By 221 (0.73%)
Pakistan

Govt's Covid-19 mobile app riddled with errors, privacy issues

  • A social media user, who analyzed the app in detail, stated the application provides irrelevant and misguided information
Published June 9, 2020

(Karachi) A mobile application, COVID-19 Gov PK, launched by the government to keep people updated about coronavirus situation in the country is riddled with errors, privacy issues and insecure connections.

A social media user, who analyzed the app in detail, has uncovered various privacy concerns and security vulnerabilities. He stated that the official mobile application does not work properly and provides irrelevant and misguided information.

He said the app is available on Google Playstore and has been downloaded 500,000 times. He maintained, "It's not a contact tracing app. It gives access to dashboards for each province and state, you can do a self-assessment, get radius alert, get a popup notification reminding the user of their personal hygiene."

"When you open the app, it asks a token to the pak gov server with hardcoded credentials: CovidAppUser / CovidApi!@#890#. Because hardcoded credentials seems to be a thing in Pakistan, when the app requests the position of infected people on the map, they used another hardcoded creds: ApiUser / ApiUser@1234#," he mentioned.

He elaborated that the first request made by the app is an insecure request. "In the "Radius Alert" tab you can get a map of infected people. Ofc, the exact coordinates of infected people are downloaded by the app," the user said.

He concluded that it is the worst mobile app with issues related to privacy, hardcoded passwords and insecure requests.

The cellular application has been developed by National Information Technology Board (NITB) to deal with coronavirus pandemic in the country with the help of technology.

The app has been designed to provide awareness to citizens about all the actions to be taken for the prevention of coronavirus.

The application currently contains four different functions such as dashboard for current status of COVID-19, alarms for washing hands, chatbot for awareness of COVID-19 and WHO videos for prevention of the disease.

Comments

Comments are closed.