Skip to content
    • Home
    • Privacy Policy
    • Contact Us!
healthtopical

healthtopical

healthtopical

  • Home
  • Diet
  • Excercise
    • Yoga
  • Drug
  • Cancer
  • Eyes
  • Stretch Marks
  • Skin
  • Hair Loss
  • News
  • News Reasons to Have Treatment For Addiction
  • News Fraxel Laser Treatment for Stretch Mark ReductionFraxel Laser Treatment for Stretch Mark Reduction
  • News Why You Should Visit a Chiropractor for Chronic Pain
  • News Fraxel Laser Treatment for Stretch Marks: A Review of its Effectiveness and Safet
  • News The Role of Fibroblasts in the Development of Stretch Marks
  • News Managing Stretch Marks after a Tummy Tuck Surgery
  • News The Best Ways to Treat and Prevent Ingrown Hairs and Stretch Marks
  • News Treating Ingrown Hairs on Stretch Marks: Tips and Techniques
  • Home
  • News Facebook Fixes Flaw That Could’ve Let Anyone Access Your Account

Facebook Fixes Flaw That Could’ve Let Anyone Access Your Account

March 14, 2016 Sristy
Facebook Fixes Flaw That Could've Let Anyone Access Your Account

Facebook has awarded a sum of $15,000 (roughly Rs. 1,010,000) to an India-born security researcher. Anand Prakash received the bug bounty from Facebook after disclosing a vulnerability in the social juggernaut’s website that enabled an attacker to gain access to anyone’s account.

Prakash discovered a vulnerability on Facebook website that allowed him to change the user account password for any account. He reported the vulnerability to Facebook last month and the company has since patched it. Prakash has now shed light on the vulnerability, and also demonstrated it in works on a video.

The security hole resided in company’s developer portal, beta.facebook.com, which is designed for developers to perform tests before rollout to the general public. Facebook sends users a 6-digit code over email or text message upon password reset request. To prevent abuse or potential ill intents, Facebook allows only a certain number of attempts. Turns out, over at the beta website, a user could make any number of guesses.

In a blog post, Prakash wrote that he utilised Burp Suite, a popular testing tool. Prakash noted that because it’s only a six-digit number, and brute forcing password is possible, it was not impossible to crack into someone’s account, guessing the reset password.

“[…] I looked out for the same issue on beta.facebook.com and mbasic.beta.facebook.com and interestingly rate limiting was missing on forgot password endpoints,” he wrote in a blog post. “I tried to takeover my account ( as per Facebook’s policy you should not do any harm on any other users account) and was successful in setting new password for my account. I could then use the same password to login in the account.”

Download the Gadgets 360 app for Android and iOS to stay up to date with the latest tech news, product reviews, and exclusive deals on the popular mobiles.

Tags: Bug Bounty, Facebook, Security, Social, Social Network, Vulnerability
[“source-Gadgets”]
News Access,Account,Anyone,Could've,Facebook,Fixes,Flaw,Let,that,Your
  • Sristy

Random Posts

  • Indian IT Infrastructure Market to Reach $1.93 Billion in 2016: Gartner

    The Indian IT infrastructure market will increase marginally to $1.93 billion (roughly Rs. 12,807 crores) this year whereas by 2020, […]

  • Cancer Warning Signs

    Overview Researchers have made large strides in the fight against cancer. Still, the National Cancer Institute (NCI) estimates that there […]

  • Yoga Makes Irritable Bowel Syndrome Vanish

    Irritable Bowel Syndrome (IBS) is a physical disorder that causes prolonged abdominal pain or discomfort, bloating, and abnormal bowel movements […]

  • The Best Supplements for Nasal Health

    If you suffer from chronic sinus problems, you may want to try adding supplements your sinus health regimen. There are […]

Post navigation

HBO Now Streaming Service Nears 1 Million Subscribers: Time Warner
Google Now on Tap Gets Optical Character Recognition to ‘Read’ Photos
  • Popular Post
  • Recent Post
Reasons to Have Treatment For Addiction
No Comments
AI-Powered CRM, Mobile QA Tool Win at HDFC’s Digital Innovation Summit
No Comments
Researchers Find Way to Speed Up Webpage Loading Time by 34 Percent
No Comments
Ola Shuts Down Ola Store and Ola Cafe
No Comments
Microsoft Contributes Its Sonic Linux Networking Suite to Open Compute Project
No Comments
Reasons to Have Treatment For Addiction
January 25, 2023January 25, 2023 admin
Fraxel Laser Treatment for Stretch Mark ReductionFraxel Laser Treatment for Stretch Mark Reduction
January 13, 2023January 18, 2023 Loknath Das
Why You Should Visit a Chiropractor for Chronic Pain
January 13, 2023January 13, 2023 admin
Fraxel Laser Treatment for Stretch Marks: A Review of its Effectiveness and Safet
January 12, 2023January 18, 2023 Loknath Das
The Role of Fibroblasts in the Development of Stretch Marks
January 10, 2023January 18, 2023 Loknath Das

Get Daily Update Via Mail

Follow me on Twitter

My Tweets

Like Us !

Like Us !

Latest Pins on Pinterest

  • Follow Me on Pinterest
Proudly powered by WordPress | Republic Theme