Lee web Design

  • Home
  • Products
    • Furniture & Accessories
    • Garden Supply
    • Hardware & Materials
    • Home Tech
  • Designer Collection
  • Typography
  • Accessories
  • Web Design
  • Lifestyle
  • Latest Internet News

Facebook Fixes Flaw That Could’ve Let Anyone Access Your Account

March 14, 2016 , Sristy , Comments Off on Facebook Fixes Flaw That Could’ve Let Anyone Access Your Account

Facebook Fixes Flaw That Could've Let Anyone Access Your Account

Facebook has awarded a sum of $15,000 (roughly Rs. 1,010,000) to an India-born security researcher. Anand Prakash received the bug bounty from Facebook after disclosing a vulnerability in the social juggernaut’s website that enabled an attacker to gain access to anyone’s account.

Prakash discovered a vulnerability on Facebook website that allowed him to change the user account password for any account. He reported the vulnerability to Facebook last month and the company has since patched it. Prakash has now shed light on the vulnerability, and also demonstrated it in works on a video.

The security hole resided in company’s developer portal, beta.facebook.com, which is designed for developers to perform tests before rollout to the general public. Facebook sends users a 6-digit code over email or text message upon password reset request. To prevent abuse or potential ill intents, Facebook allows only a certain number of attempts. Turns out, over at the beta website, a user could make any number of guesses.

In a blog post, Prakash wrote that he utilised Burp Suite, a popular testing tool. Prakash noted that because it’s only a six-digit number, and brute forcing password is possible, it was not impossible to crack into someone’s account, guessing the reset password.

“[…] I looked out for the same issue on beta.facebook.com and mbasic.beta.facebook.com and interestingly rate limiting was missing on forgot password endpoints,” he wrote in a blog post. “I tried to takeover my account ( as per Facebook’s policy you should not do any harm on any other users account) and was successful in setting new password for my account. I could then use the same password to login in the account.”

Download the Gadgets 360 app for Android and iOS to stay up to date with the latest tech news, product reviews, and exclusive deals on the popular mobiles.

Tags: Bug Bounty, Facebook, Security, Social, Social Network, Vulnerability
[“source-Gadgets”]

Share this:

  • Facebook
  • LinkedIn
  • Reddit
  • Twitter
  • Tumblr
  • Pinterest
  • WhatsApp

Posted in Latest Internet News. Tagged as Access, Account, Anyone, Could've, Facebook, Fixes, Flaw, Let, that, Your

Next Post →

Women Spending More Time on Search, Says Google India

← Previous Post

Google Sides With Facebook Amid Data-Dominance Investigation

Author

Sristy

Related Posts

Top 5 Digital Marketing Tips for Startups

June 6, 2022 , admin , Comment Closed

Probiotic capsules may speed up COVID recovery: Study

May 14, 2022 , Loknath Das , Comment Closed

3D models in Explain Everything iOS and iPadOS versions

January 25, 2022 , Loknath Das , Comment Closed

Get Newsletter Daily

Trending News

Emkay Securities maintains buy on Future Lifestyle Fashion, target price Rs 560

November 30, 2019 , Loknath Das, Comment Closed

Google Assistant to launch With Hinglish help; Allo and Duo Availability exact

June 17, 2016 , Sristy, Comment Closed

Gwyneth Paltrow signs Netflix deal to create her lifestyle and wellness brand ‘Goop’

February 6, 2019 , Loknath Das, Comment Closed

BigBasket To Deliver Products In 60 Minutes

April 15, 2016 , Sristy, Comment Closed

Glover Teixeira wants more clarity from USADA on over-the-counter products

April 15, 2016 , Sristy, Comment Closed

10 Questions With Greg Shell Of Shell’s Feed And Garden Supply

June 7, 2017 , Loknath Das, Comment Closed

HTC Nexus nine no longer indexed on Google keep; may additionally soon Be Discontinued

June 6, 2016 , Sristy, Comment Closed

international surroundings Day 2016: 5 of Your preferred foods anticipated to go Extinct

June 7, 2016 , Sristy, Comment Closed

Amazon Prime Day Sale: Top five car accessories with stupendous discounts to improve your in-cabin experience

July 16, 2019 , Loknath Das, Comment Closed

Find Us !

Find Us !

Follow me on Twitter

My Tweets

Latest Pins on Pinterest

  • Follow Me on Pinterest
  • Home
  • Privacy Policy
  • Contact Us!

© Lee web Design 2023. Powered by WordPress & FancyThemes