Modernizing Authentication — What It Takes to Transform Secure Access
Facebook has patched a vulnerability that allowed any user to view any other user's private photos.
"Before it was fixed, the flaw was used to hack the account of Facebook CEO Mark Zuckerberg and post photos online," writes Threatpost's Paul Roberts.
"The social network responded quickly after a post in a discussion forum on bodybuilding.com detailed a method for using a feature to report suspicious content to bypass privacy protections on other Facebook users' accounts," Roberts writes. "The company issued a statement Tuesday afternoon saying the bug was created in a 'recent code push' and was only available for a short period of time before it was patched."
Go to "Facebook Fixes Complaint Feature Abused To Bypass Photo Privacy, Zuckerberg Among Victims" to read the details.https://o1.qnsr.com/log/p.gif?;n=203;c=204634421;s=15939;x=7936;f=201702151714490;u=j;z=TIMESTAMP;a=20304455;e=i
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.