Only your friends are supposed to be able to write on your Facebook wall, but using the glitch he found, Shreateh wrote about the issue on CEO and founder of Facebook Mark Zuckerberg's wall.
Palestinian security expert Khalil Shreateh discovered a glitch that allows anyone to post to a stranger's Facebook wall. After Facebook ignored a report of the bug Shreateh sent, the hacker posted to Zuckerberg's wall and got a speedy response.
‘Sorry for breaking your privacy,’ he wrote in a since removed post to Zuckerberg, ‘I had no other choice…after all the reports I sent to Facebook team.’
Shreateh went on to recount his attempts to warn the website and posted a grab of the post on his blog.
Minutes later, his pleas were answered. Facebook contacted him demanding to know how he’d hacked their boss' personal page. Also his Shreateh's Facebook account was temporarily disabled as a security measure.
‘We fixed this bug on Thursday,’ wrote Matt Jones from Facebook’s security team in a Saturday post on Hacker News.
But Facebook won't pay the normal $500 bounty to Shreatah because they say his intrusive methods broke the rules. Facebook has a bounty program designed to bribe hackers into reporting glitches they find rather than exploiting them. Such validated reports are worth $500.
Shreateh, whose first language is Arabic, lives in Palestine.
Shreateh, whose first language is Arabic, lives in Palestine.
0 comments:
Post a Comment