Gaana.com, one of the largest and most popular music websites of India, was hacked yesterday by a Pakistani hacker Mak Man. Gaana.com serves over 7.5 million monthly users while it had over 12 million registered users at the time of hack.
According to Mak Man, there was security vulnerability on Gaana.com servers and he had reported the flaw to the administration with complete details, however, Gaana.com didn’t respond to the vulnerability report and decided to ignore the reports altogether.
In response to which, to wake up the management, he defaced the website and hacked the user data of over 12 million registered users of Gaana.com and posted it on internet.
Mak Man confirmed that no financial data was stolen or even read. He later on removed the data of 12 million users from internet after CEO of the company — that manages Gaana.com — apologised for ignoring Mak Man’s reports and requested to remove users’ details.
Below is what CEO of Times Internet said:
Hi, I’m Satyan, CEO of Times Internet, which runs Gaana.
First of all, I’d like to apologize personally if you had shared these reports and we didn’t respond earlier. Totally unacceptable by us, and I’m looking into it.
Second, I don’t think your intention is to expose personal information about Gaana users, but to highlight a vulnerability. Consider it highlighted, and we’re 100% on it. Can I request that you take down access to the data, and delete it completely?
And finally, if possible, I’d appreciate if we could hire you as a consultant to help us find any more vulnerabilities across our network, so that we can keep our products as secure as possible. If you’re interested, message me directly, as I’d be very grateful for your advice.
Thanks, Satyan
Via TheHackerNews
yar boht hi bori khabar hai yeh
mak man kon hota hai hai kisi ko sekhana wala
ab admin hi web ko safe nai rakhna chahta to
mak man ko kya pari hai safe karne ki
really a shame for Pakistanissss
you need to see the history of hacked pakistani websites by indians.
yar yeh to koi baat nai hoi
ab hum nay un ki web hack ki hai
phr wo hmari web hack karein
to yeh chain kahan end hoga
yeh to koi hal nai hai???
Lol..
get a life man!
jb ksi shey ka pata naa ho to mt bola kro!
Thanks @King Mughal for shutting that non sense argument.
ok
please explain “get a life man”
Zinda dil bano!
kaisay bano
thora explain karo …
pagal hai yeh
no
I think I am not !!!
agreed
yar ap log jo bhi kaho
every has different point of view
but mein itna janta hun in hackings say ap kabhi
bhi in do nations ky darmain ache talokaat
kaym nai kar sktay…
India me kisi ko koi fark nhi parta, konse site hack hue & kisi ne uske data stolen kiya.. india me security k liye koi utna sochta nhi hai..
but hai yeh sab se dono countries me kabhi ache milao nhi ho skta..
aisi harkato pe Indian muslims khud gaaliya dete hai, pakistan ko..
You are right brother.
Qaisar you should leave for India ;)
what ever , shame of this news , that pakistani , are always involved in bad news ……
lol he going to be hired in India … Yaaahh and as a consultant Oooo.. So what is MAK MAN upto??
Usay Bula kar bribe kar rahy hain Gaana.com waley… Takey pakra jaye… Pehle toh website hack krny ke jurm main scene dalna hy or makman to gaya… Pakistani sher hai makman dekhna sb wo nahin jaye ga….
HE didn’t accept the job… HE is a great personality and if you get chance to talk him on facebook or any social networking site you will surely be amazed how talented he is ………
should have disclose the salary package as well ;)
Very well done by Mak Khan.
Website wasn’t defaced .. I just hosted a script which had the ability to grab user details of a single user against a specific email address .. No data was dumped or stored locally ..
Brilliant work Mak Man ☺
It was very ethical of you not accessing and disclosing the financial data, Did you response to offer of the CEO ?
I haven’t received any formal invite yet .. I believe that job offer was just a friendly gesture ..
If they give you a salary package of 1 million rupees per month, would you go? :D
Was there a question? :p
Not worth it. Money can’t buy real hackers.
Really!! I thought all hackers have an ambition of becoming a man who has a good salary package at any cost especially country like Pakistan where getting a job is the biggest issue. It’s only possible if the hacker belongs to a rich family.
yea he will go and gets his salary in form of baryani in jail because they even can’t let innocent pigeon for spy agenda how come they let this sob
u did a great job , by not harming any one !!!
job offer is just a bait, to get your identity and start legal proceedings against you. dont fall for this very old trick.
This is sheer awesomeness bro.✌???
b@tard don’t give weapons to enemy they want to kill you and you are giving chance to secure them what a SOB who are you to teach them if there were any holes why you told them why you can’t pass this information to your fellow country men to help and secure there servers soon they will attack on your important sites and stole the data use its against in our country
i just spit on your face think once again in this what you have gave the enemies
I can’t decide what’s worse .. your repugnant bigoted views or your horrible grammar .. But one thing I know for sure .. you have some issues son ..
I can’t decide what’s worse .. your repugnant bigoted views or your horrible grammar .. But one thing I know for sure .. you have some issues son ..
yea every patriotic pakistani have issues with likes of you SOB your type SOB are disgrace of nation keep on grammar bz your mom went to indian get grammar from there and you are its result
you are funny :D :P
Nice Job bro!!
INDIANS JALLO PAKISTANIÒ SE JALL JALL KE RAKH HO JAO GE.
I hacked the indian expressed website no one reported that O.o http://www.zone-h.org/archive/notifier=Essaji/page=1
sharum ki baat hai , hum pakistanio ke liye
Ethical Hacking at its best. You did the huge company a favour by highlighting the issues and also warned them before taking action but they did not listen. Consumers data is the most important thing for anyone who stores such information especially when they are paying with their money for purchases through them. Identity theft is a major issue.
Also he could just consult for them without going there if he wishes.
Additionally i hope he does same for our Paki sites like nadraetc.
it is not a good thing to hack anyone
various hackers are working day and night for their nations silently… nobody know about them, I think this makman is new to this game, may be….just to have some money. ALLAH knows better
GEO PAKISTANI HACKER, BAND BAJA DO AGAR KOI HAMARY EK WEBSITE KO HACK KARY GA EK GHANTY MAIN TO PAKISTANI BOYS US EK GHANTY MAIN 100 SE ZAIDA WEBSITE HACK KAR SAKTY HAI GEO NEWS PE AYA THA GEO TO AISY
Sir mujhe gmail account hanking ke bare me bataoo pls call now..07351657869../