Lee web Design

  • Home
  • Products
    • Furniture & Accessories
    • Garden Supply
    • Hardware & Materials
    • Home Tech
  • Designer Collection
  • Typography
  • Accessories
  • Web Design
  • Lifestyle
  • Latest Internet News

Facebook Fixes Flaw That Could’ve Let Anyone Access Your Account

March 14, 2016 , Sristy , Comments Off on Facebook Fixes Flaw That Could’ve Let Anyone Access Your Account

Facebook Fixes Flaw That Could've Let Anyone Access Your Account

Facebook has awarded a sum of $15,000 (roughly Rs. 1,010,000) to an India-born security researcher. Anand Prakash received the bug bounty from Facebook after disclosing a vulnerability in the social juggernaut’s website that enabled an attacker to gain access to anyone’s account.

Prakash discovered a vulnerability on Facebook website that allowed him to change the user account password for any account. He reported the vulnerability to Facebook last month and the company has since patched it. Prakash has now shed light on the vulnerability, and also demonstrated it in works on a video.

The security hole resided in company’s developer portal, beta.facebook.com, which is designed for developers to perform tests before rollout to the general public. Facebook sends users a 6-digit code over email or text message upon password reset request. To prevent abuse or potential ill intents, Facebook allows only a certain number of attempts. Turns out, over at the beta website, a user could make any number of guesses.

In a blog post, Prakash wrote that he utilised Burp Suite, a popular testing tool. Prakash noted that because it’s only a six-digit number, and brute forcing password is possible, it was not impossible to crack into someone’s account, guessing the reset password.

“[…] I looked out for the same issue on beta.facebook.com and mbasic.beta.facebook.com and interestingly rate limiting was missing on forgot password endpoints,” he wrote in a blog post. “I tried to takeover my account ( as per Facebook’s policy you should not do any harm on any other users account) and was successful in setting new password for my account. I could then use the same password to login in the account.”

Download the Gadgets 360 app for Android and iOS to stay up to date with the latest tech news, product reviews, and exclusive deals on the popular mobiles.

Tags: Bug Bounty, Facebook, Security, Social, Social Network, Vulnerability
[“source-Gadgets”]

Share this:

  • Facebook
  • LinkedIn
  • Reddit
  • Twitter
  • Tumblr
  • Pinterest
  • WhatsApp
  • Skype

Posted in Latest Internet News. Tagged as Access, Account, Anyone, Could've, Facebook, Fixes, Flaw, Let, that, Your

Next Post →

Women Spending More Time on Search, Says Google India

← Previous Post

Google Sides With Facebook Amid Data-Dominance Investigation

Author

Sristy

Related Posts

How Rummy Online Tournaments on Khelplay Rummy Get Better Each Day?

March 1, 2021 , admin , Comment Closed

Latest Study Report of Internet of Things (IoT) Telecom Services Market Growth 2019-2025: Focusing on Top Leading Players like Aeris, AT&T, China Mobile, Deutsche Telekom, Ericsson, Huawei

October 12, 2019 , Loknath Das , Comment Closed

Observe Diwali in Singapore

September 26, 2019 , Loknath Das , Comment Closed

Get Newsletter Daily

Trending News

Samsung Introduces a Tech Necklace for Taking Calls from Your Smartphone

November 6, 2016 , Sristy, Comment Closed

Missiles, Copters, Subs – Anil Ambani’s Ambitious Defence Plan

August 1, 2016 , Sristy, Comment Closed

Plan and budget for a good return on your garden investment

November 29, 2017 , Loknath Das, Comment Closed

Google Home review Has the Amazon Echo finally met its match

April 24, 2017 , Loknath Das, Comment Closed

AMD Files Patent Infringement Complaint Against LG, MediaTek, Sigma Designs, and Vizio

February 10, 2017 , Sristy, Comment Closed

Web Design Trends That Ruled the Roost in 2016 (And What’s To Come In 2017)

January 19, 2017 , Sristy, Comment Closed

Want to Sell Products to Millenials? Here’s What You Need To Do

November 2, 2019 , Loknath Das, Comment Closed

Small Businesses Can ‘Take Their Offices On The Road’ With New Broadband Data Bundle From AT&T

January 11, 2017 , Sristy, Comment Closed

Nendo creates Kanji-inspired furniture and stone-shaped tableware for Zens

February 2, 2018 , Loknath Das, Comment Closed

Find Us !

Find Us !

Follow me on Twitter

My Tweets

Latest Pins on Pinterest

  • Follow Me on Pinterest
  • Home
  • Privacy Policy
  • Contact Us!

© Lee web Design 2021. Powered by WordPress & FancyThemes