Open Menu
AllLocalCommunitiesAbout
lotide
AllLocalCommunitiesAbout
Login

I’m Lovin’ It: Exploiting McDonald’s India APIs to hijack deliveries and order food for a penny

⁨386⁩ ⁨likes⁩

Submitted ⁨⁨4⁩ ⁨months⁩ ago⁩ by ⁨tkw8@lemm.ee⁩ to ⁨technology@lemmy.world⁩

https://eaton-works.com/2024/12/19/mcdelivery-india-hack/

source

Comments

Sort:hotnewtop
  • NoForwardslashS@sopuli.xyz ⁨4⁩ ⁨months⁩ ago

    A $240 gift card seems quite low for bugs that would allow you to order (essentially) free food, access the orders and invoices of other users, driver’s personal information and their real time location.

    source
    • walter_wiggles@lemmy.nz ⁨4⁩ ⁨months⁩ ago

      Yeah I’d be insulted. I think a good compromise would be to demand a higher amount, but to be donated to a charity.

      source
      • PlexSheep@infosec.pub ⁨4⁩ ⁨months⁩ ago

        That’s still insignificant compensation

        source
      • Etienne_Dahu@jlai.lu ⁨4⁩ ⁨months⁩ ago

        Like Ronald McDonald House Charities

        source
        • -> View More Comments
  • AlecSadler@sh.itjust.works ⁨4⁩ ⁨months⁩ ago

    Fantastic read!

    source
  • TheKMAP@lemmynsfw.com ⁨4⁩ ⁨months⁩ ago

    $240 LMAO

    source
  • Treczoks@lemmy.world ⁨4⁩ ⁨months⁩ ago

    And what an impressive list of bugs that is…

    source