The APK used has been tampered. To conduct the attack, the attacker will need this APK + a physical access to the victim phone
-
-
Show this threadThanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
That is not
@UIDAI glitch then, all 2FA/2 step verifications can be bypassed if you have physical access.(gmail,icloud etc) someone known to them can hack it. And it's hard for some random guy to get the aadhar number and the mobile phone. Useless post. -
Instead of making statement like please show me how you crack Gmail and ICloud 2FA. After that I will be very happy to discuss with you
-
Make a phishing page for any app or account you wanna hack. (Most codes are available online) Do basic social engineering and send the person you want to hack the link. Once he enters details you can send you have the id and password.
-
Next time whenever you have the access to their device, you can easily get in any of the accounts. What i want say here is that it's not google/apple/Facebook's glitch.
-
If someone who's intention is to hack your adhaar data and personal details has access to your phone, then i think
@UIDAI is not a fault but the person himself. It's highly unlikely a random person can hack a random persons data by using your method. -
This is the
@UIDAI responsibility to put in place the maximum security in their app. -
Are you kidding me ? You want them to allot security to everyone so that their phone cannot be physically accesed by anyone ??? It's all about the OTP. They have given you a added security layer now it's on you to safeguard your device from unauthorized physical access.
-
What extra security you want ? Police protection. Because even if they allow 2 factor authentication where a pop-up will be generated whenever you access a aadhar login again anyone with physical access will be able to login. There is no winning here.
- 6 more replies
New conversation -
-
-
Exactly what I am just seeing Elliot, that you are somehow THE DUMBEST CYBER SECURITY RESEARCHER who bypassed an APK which needs 2 step authentication and whoa....HE DID IT WITH THE ACCESS OF THE MOBILE PHYSICALLY NOT REMOTELY... Claps buddy...








-
ME TOO I CAN WRITE IN CAPITAL LETTERS
-
Yeah and you should know what does that mean when you write something in Caps in a sentence.. I think you don't need to be childish though..
-
You used ALLCAPS in your previous tweet which he was mocking..
-
Relax, he knows that. He used CAPS in a part of the tweet which he was emphasizing upon, not the whole tweet.
-
Yeah.. but its like shouting.. very rude... not polite at all

-
What he did by replying me with only one sentence and that too using all caps, I guess thats shouting bro..

so basically I found no point with that "all caps" thing rather it made him even funnier..
End of conversation
New conversation -
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Hehe , Doesn't even qualify a tweak ..and you are calling it disclosure, I when ever feel bored just look for your tweets ..and can't stop laughing ..are you or your supporters going to block me ? Again..
-
Data you are changing ( passwd ) and code ( checking and manipulating it ) both are on handset , you can do anything dude what's big deal..shortcut for your baby trick is go and clear app data from shortcut ...hehe all your app password is gone
-
Settings ->App -> madhaar app -> clear data I dropped my haircut plan due to your video leak ..now you pay for late fee
-
And block the Twitter account that tried to question him
-
Yes did the same to me. He has an opinion about all the app and websites of
#India but whoever doesnt agree with him. He blocks them.#anarchist Shows#Propaganda he is trying to spread. People! stop following blindly.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.