Jump to content

Rafay Baloch: Difference between revisions

Add links
From Wikipedia, the free encyclopedia
Browse history interactively
← Previous editNext edit →
Content deleted Content added
VisualWikitext
Added recent photograph of the person
No edit summary
Line 6: Line 6:
| image_size =
| image_size =
| alt = Photograph
| alt = Photograph
| caption = Rafay Baloch, in 2019
| caption = Rafay Baloch at Tech Valley, in 2019
| birth_date = {{Birth date and age|df=yes|1993|2|5}}
| birth_date = {{Birth date and age|df=yes|1993|2|5}}
| native_name =
| native_name =
Line 19: Line 19:
Rafay Baloch attended [[Bahria University]]'s [[Islamabad]] campus, from which he obtained a [[bachelor's degree]]. Baloch is currently placed in Hall of Fame of Bahria University.<ref>[https://www.bahria.edu.pk/oric/international-recognition-of-bu-students/ International Recognition of BU Students]</ref>
Rafay Baloch attended [[Bahria University]]'s [[Islamabad]] campus, from which he obtained a [[bachelor's degree]]. Baloch is currently placed in Hall of Fame of Bahria University.<ref>[https://www.bahria.edu.pk/oric/international-recognition-of-bu-students/ International Recognition of BU Students]</ref>


==Hacking career==
==Career==


Rafay began his hacking career while he was still doing his bachelors and began to conquer with his achievements. He then with his achievements and experience in hacking wrote a book called "[[White hat (computer security)|Ethical Hacking]] [[Penetration Testing]] Guide". His book was published in [[United Kingdom|UK]] by “[[Taylor & Francis|Taylor and Francis]]” which as per online forums is regarded as one of the Top 10 books on [[White hat (computer security)|Ethical Hacking]]. He is the first Pakistani Security researcher to be acknowledged by [[Google]], [[Facebook]], [[PayPal]], [[Apple Inc|Apple]], [[Microsoft]]<ref>{{Cite web|url=https://technet.microsoft.com/en-us/security/cc308575.aspx|title=Microsoft Security|last=|first=|date=|website=|archive-url=|archive-date=|dead-url=|access-date=}}</ref> and many other International organizations.He has also written several papers on information [[security]], namely "[[HTML5]] Modern Day Attack Vectors" and "Web Application Firewall Bypass." and "Bypassing Browser Security Policies For Fun And Profit".<ref name=":1">{{Cite web|url=https://www.blackhat.com/asia-16/speakers/Rafay-Baloch.html|title=Black Hat Asia 2016|website=www.blackhat.com|access-date=2018-05-06}}</ref>
Rafay began his hacking career while he was still doing his bachelors and began to conquer with his achievements. He then with his achievements and experience in hacking wrote a book called "[[White hat (computer security)|Ethical Hacking]] [[Penetration Testing]] Guide". His book was published in [[United Kingdom|UK]] by “[[Taylor & Francis|Taylor and Francis]]” which as per online forums is regarded as one of the Top 10 books on [[White hat (computer security)|Ethical Hacking]]. He is the first Pakistani Security researcher to be acknowledged by [[Google]], [[Facebook]], [[PayPal]], [[Apple Inc|Apple]], [[Microsoft]]<ref>{{Cite web|url=https://technet.microsoft.com/en-us/security/cc308575.aspx|title=Microsoft Security|last=|first=|date=|website=|archive-url=|archive-date=|dead-url=|access-date=}}</ref> and many other International organizations.He has also written several papers on information [[security]], namely "[[HTML5]] Modern Day Attack Vectors" and "Web Application Firewall Bypass." and "Bypassing Browser Security Policies For Fun And Profit".<ref name=":1">{{Cite web|url=https://www.blackhat.com/asia-16/speakers/Rafay-Baloch.html|title=Black Hat Asia 2016|website=www.blackhat.com|access-date=2018-05-06}}</ref>


Rafay found critical vulnerabilities in PayPal in 2012 and was rewarded 10,000$ + a job offer to work for them as a Security Researcher that he refused as he was still doing his [[Bachelor's degree|bachelors]] at that time.<ref>{{Cite news|url=http://tribune.com.pk/story/486506/working-a-desk-job-young-techie-bags-a-million-rupees-using-it-skills/|title=Working a desk job: Young techie bags a million rupees using IT skills|date=2012-12-30|work=The Express Tribune|access-date=2018-05-06|language=en-US}}</ref>
Rafay found critical vulnerabilities in PayPal in 2012 and was rewarded 10,000$ + a job offer to work for them as a Security Researcher that he refused as he was still doing his [[Bachelor's degree|bachelors]] at that time.<ref>{{Cite news|url=http://tribune.com.pk/story/486506/working-a-desk-job-young-techie-bags-a-million-rupees-using-it-skills/|title=Working a desk job: Young techie bags a million rupees using IT skills|date=2012-12-30|work=The Express Tribune|access-date=2018-05-06|language=en-US}}</ref>

Rafay Baloch is currently working as a Cyber Security Advisor at [[Pakistan Telecommunication Authority]].


==Bug Bounty Programs==
==Bug Bounty Programs==

Revision as of 21:00, 4 May 2019

Rafay Baloch
Photograph
Rafay Baloch at Tech Valley, in 2019
Born (1993-02-05) 5 February 1993 (age 31)
NationalityPakistan
Websitewww.rafaybaloch.com

Rafay Baloch (Template:Lang-ur, born 5 February 1993) is a Pakistani ethical hacker and security researcher known for his discovery of vulnerabilities on the Android operating system. He has been conducting security research for over 7 years. He has been Featured and known by both Nationally and Internationally Media and Publications[1][2] like Forbes,[3] BBC,[4] The Wall Street Journal,[5] and The Express Tribune.[1] He has listed as one of The 15 Most Successful Ethical Hackers WorldWide[6] and Top 25 Threat Seekers[7] by SCmagazine.

Personal life

Rafay Baloch attended Bahria University's Islamabad campus, from which he obtained a bachelor's degree. Baloch is currently placed in Hall of Fame of Bahria University.[8]

Career

Rafay began his hacking career while he was still doing his bachelors and began to conquer with his achievements. He then with his achievements and experience in hacking wrote a book called "Ethical Hacking Penetration Testing Guide". His book was published in UK by “Taylor and Francis” which as per online forums is regarded as one of the Top 10 books on Ethical Hacking. He is the first Pakistani Security researcher to be acknowledged by Google, Facebook, PayPal, Apple, Microsoft[9] and many other International organizations.He has also written several papers on information security, namely "HTML5 Modern Day Attack Vectors" and "Web Application Firewall Bypass." and "Bypassing Browser Security Policies For Fun And Profit".[10]

Rafay found critical vulnerabilities in PayPal in 2012 and was rewarded 10,000$ + a job offer to work for them as a Security Researcher that he refused as he was still doing his bachelors at that time.[11]

Rafay Baloch is currently working as a Cyber Security Advisor at Pakistan Telecommunication Authority.

Bug Bounty Programs

Rafay has been active into bug bounty programs and has reported several critical vulnerabilities [12] in several open source web applications as well as in bug bounty programs. One of the most notable vulnerability where he hacked into PayPal servers by exploiting a remote code execution vulnerability for which he was offered a job which he decided not to opt.

Browser Security Research

Rafay has actively reported several critical vulnerabilities in browsers. He started by finding Same Origin Policy (SOP) bypass in Android Stock browser which was initially rejected by Google ,[13] however this was later verified by Google after Researchers from Rapid7 verified it .[14] This was coined as CVE 2014-6041. Rafay followed by reported several other SOP bypasses.[15] Researchers at Trend Micro found this bug to be more widespread.[16] It was later reported that hackers have been actively using Rafay's SOP bypass exploits for hacking into Facebook accounts.[17] The SOP bypass bug was elevated by researcher from Rapid7 Joe Vennix for conducting a remote code execution,"[18]" [19] Rafay also found several vulnerabilities affecting Webview which allowed an attacker to read local files as well as steal cookies from the user device.[20]

Apple Safari Address Bar Spoofing Controversy

In 2018, Rafay unveiled a crack in both Safari and Microsoft's Edge browser that paved the way for the URL of a safe website to be shown in the address bar while users were actually being taken to a different, and possibly malicious, website.[21] Rafay Baloch notified the security issue and informed Apple and Microsoft in early June. Microsoft fixed the issue within two months but Apple didn’t respond to Rafay’s report despite of the deadline given of 90 days grace period so he made the details public as per international rule.[22] Rafay Baloch wrote in his article that an address bar can be used to easily breach someone’s privacy, without them noticing it.[23] The reason this is possible is because an address bar is the only reliable indicator for security in new browsers, as it displays the site’s URL and other details related to the webpage you are on.[24][25][26]

Google No Patch Policy Discovery

Rafay Baloch along with Joe Vennix got to know that Google was terminating support late last year when Google’s Android security crew replied to one of their warnings about a bug in the AOSP. There are bags full of Android Web View bugs that need to be patched; Baloch and Vennix, among other contributors to the Metasplot vulnerability exploit tool, have noticed at least 11 active exploits targeting Android's Web View in Jelly Bean.[27]

Google has declined to comment on the matter. It likely made the policy decision when it chose to "unbundle" WebView from its core operating system as Android 5.0, or Lollipop, which was pushed out in October 2014. This meant users would be able to update WebView separately from Android, with automated downloads from Google's Play Store. But this option remains unavailable to anyone on an older version of the operating system; keep in mind that very few people actually use Lollipop, less than 0.1 percent of all Android device owners.[22][28][29]

References

  1. ^ a b "The unsung achiever: Pakistani tops lists of ethical hackers of 2014 - The Express Tribune". The Express Tribune. 2015-01-03. Retrieved 2018-05-06.
  2. ^ "Rafay Baloch Recognized as One of the Top Ethical Hackers of 2014". propakistani.pk. Retrieved 2018-05-06.
  3. ^ Fox-Brewster, Thomas. "Widespread Android Vulnerability 'A Privacy Disaster', Claim Researchers". Forbes. Retrieved 2018-05-06.
  4. ^ "Android security shift exposes users". BBC News. 2015. Retrieved 2018-05-06.
  5. ^ Yadron, Danny (2015-01-12). "Google Isn't Fixing Some Old Android Bugs". WSJ. Retrieved 2018-05-06.
  6. ^ "The 15 most successful ethical hackers worldwide". SC Media UK. 2016-04-06. Retrieved 2018-06-04.
  7. ^ Top 25 Threat seekers
  8. ^ International Recognition of BU Students
  9. ^ "Microsoft Security". {{cite web}}: Cite has empty unknown parameter: |dead-url= (help)
  10. ^ "Black Hat Asia 2016". www.blackhat.com. Retrieved 2018-05-06.
  11. ^ "Working a desk job: Young techie bags a million rupees using IT skills". The Express Tribune. 2012-12-30. Retrieved 2018-05-06.
  12. ^ "Files from Rafay Baloch". {{cite web}}: Cite has empty unknown parameter: |dead-url= (help)
  13. ^ "Google Under Fire For Quietly Killing Critical Android Security Updates For Nearly One Billion". Retrieved 2015-01-12.
  14. ^ "Major Android Bug is a Privacy Disaster (CVE-2014-6041)". {{cite web}}: Cite has empty unknown parameter: |dead-url= (help)
  15. ^ "Another bug exposed by Pakistani researcher". {{cite web}}: Cite has empty unknown parameter: |dead-url= (help)
  16. ^ "Same Origin Policy Bypass Vulnerability Has Wider Reach Than Thought - Trendmicro". Trendmicro. 2014-09-29.
  17. ^ "Facebook Users Targeted By Android Same Origin Policy Exploit - Trendmicro". Trendmicro. 2014-10-26.
  18. ^ "Google Play Store X-Frame-Options (XFO) Gaps Enable Android Remote Code Execution (RCE)". 2015-02-10.
  19. ^ "(XFO) Gaps Enable Android Remote Code Execution (RCE)".
  20. ^ "Bypassing-Browser-Security-Policies-For-Fun-And-Profit".
  21. ^ "Security flaw left Safari and Edge users vulnerable to fake websites". Engadget. Retrieved 2019-01-01.
  22. ^ a b Fox-Brewster, Thomas. "Google Under Fire For Quietly Killing Critical Android Security Updates For Nearly One Billion". Forbes. Retrieved 2019-01-01.
  23. ^ "Apple Safari & Microsoft Edge Browser Address Bar Spoofing - Writeup". Miscellaneous Ramblings of A Ethical Hacker. Retrieved 2019-01-01.
  24. ^ Sameer, Sarmad. "Pakistani Researcher Discovers Address Bar Spoofing Vulnerability in Safari and Microsoft Edge". Retrieved 2019-01-01.
  25. ^ "Apple's Safari and Microsoft's Edge browsers contain spoofing bug". SC Media. 2018-09-12. Retrieved 2019-01-01.
  26. ^ tweet_btn(), Shaun Nichols in San Francisco 11 Sep 2018 at 05:01. "Safari, Edge fans: Is that really the website you think you're visiting? URL spoof bug blabbed". www.theregister.co.uk. Retrieved 2019-01-01.{{cite web}}: CS1 maint: numeric names: authors list (link)
  27. ^ "Google Passes on Older Android Patches; 930 Million Devices Vulnerable". threatpost.com. Retrieved 2019-01-01.
  28. ^ "Online security: Pakistani helps Google avoid privacy disaster". The Express Tribune. 2014-09-20. Retrieved 2019-01-01.
  29. ^ "No Patch to Same Origin Policy Bypass in Old Android Devices". Zimperium Mobile Security Blog. 2015-01-15. Retrieved 2019-01-01.
Retrieved from "https://en.wikipedia.org/enwiki/w/index.php?title=Rafay_Baloch&oldid=895521890"