Koo is an Indian micro-blogging platform that offers a Twitter-like experience in Indian languages, many ministers have tweeted to come and join them on Koo. But you know Koo is Exposing Users Personal Data.
is Koo really Exposing Users Personal Data?
A French security researcher Robert Baptiste, who goes by the pseudonym Elliot Alderson has exposed Koo and said that the platform is exposing your personal data such as email addresses, names, gender, and more. On the request basis, Baptiste spends 30 min on Koo and then he found out about this problem.
He said it is fairly easy for him to find out the personal data of people on Koo. He said the platform is leaking personal data of its users including email, date of birth, marital status, and gender. Baptiste shared some screenshots in which we can see how personal data has been leaking out. Baptiste also said Koo had a domain registered in the US with the registrant based in China.
One of the co-founders Aprameya Radhakrishna on Thursday said that the controversy over data leak was unnecessary as those data are what the user has voluntarily provided.
When a user sets up a profile on Koo, information like name, handle, profession, bio, website, email, mobile, date of birth, gender, marital status, qualification, work experience etc. Providing this information is voluntary as only valid mobile phone number is required for creating an account.
Aprameya clarified that the data that was claimed to have been leaked was actually the data that a user “has voluntarily shown on their profile”. “It cannot be termed a data leak. If you visit a user profile you can see it anyway,” he said.
Alderson claimed that he checked the point before levelling the allegation and it was not true.
To sharpen his allegation against Koo, the hacker even shared the profile page of IAS officer Sonal Goel and claimed that he could access more data than what was displayed on Sonal Goel’s profile page.
To this, Aprameya asked the hacker to contact him if he wants to help Koo in its journey to “do something for our country”. Aprameya also ensured that e-mail ids have been blocked from view.
All this happened on Twitter while a fake account of Koo on Twitter (@KooAppOfficial) also got suspended. @Kooindia is the official Twitter handle.