Vulnerability Makes All Facebook Accounts Exposed

New Vulnerability has been discovered in facebook that allows an attacker to obtain all users credential on the social network website. By having the email address an attacker can get the name and pictures of victims.

The vulnerability can works regardless of the account privacy settings, this mean that even if your account hidden from all search engines it is possible to have the sensitive information.

The result of gathered information can be used for phishing attacks or any other issue.

According to the researchers if someone has a list of email address that he has no clue about. He can feed them to Facebook one by one (or in a list, using a script like this) and chances are that he’ll get more than 50% hits. Useful for phishing attacks (People will get more convinced when they see their *real* names).

Or an attacker can randomly generate email addresses and create a database with user’s names and pictures, which mean that you have no privacy and your information, can be easily found.
Update :
Facebook, in a statement sent to SCMagazineUS.com on Thursday, said the glitch has been fixed.

“We have technical systems in place to prevent people’s names and profile photos from showing to unrelated users upon login, but a recently introduced bug temporarily prevented these from working as intended,” Facebook said in a statement. “We remedied the situation swiftly.”

make sure you subscribe to my RSS feed!

Share
Subscribe
Notify of
guest
15 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
trackback

[…] This post was mentioned on Twitter by 南门雄, K4l4m4r1s, Mourad Ben Lakhoua, Mourad ben lakhoua, Mourad ben lakhoua and others. Mourad ben lakhoua said: Vulnerability Makes All Facebook Accounts Exposed… http://fb.me/BgIj8V3b […]

Hypnosis gold coast

Students thwart Facebook threat Indiana Daily Student – Claire Aronson – ‎7 hours ago‎ The vulnerability affects any user with a valid Facebook account, because the user loses anonymity and privacy to any website, Wang said. … Facebook rogue application toolkits available for only $25 SC Magazine UK – Dan Raywood – ‎41 minutes ago‎ A rogue application that allows cyber criminals to access Facebook accounts for only $25 (£15) has been detected. For the price of a few CDs, … Sify Facebook bug that allows personal data access, phishing repaired Sify – ‎Feb 5, 2011‎ Washington: A Facebook security… Read more »

trackback

RT @Security_FAQs: Vulnerability Makes All Facebook Accounts Exposed http://bit.ly/cXsbxV

trackback

RT @Security_FAQs Vulnerability Makes All Facebook Accounts Exposed http://bit.ly/cXsbxV

trackback

Vulnerability Makes All Facebook Accounts Exposed http://bit.ly/cXsbxV

trackback

RT @MBenLakhoua: Vulnerability Makes All Facebook Accounts Exposed:

New Vulnerability has been discovered in facebook that … http://bit.ly/cJZwTG

trackback

Vulnerability Makes All Facebook Accounts Exposed http://bit.ly/cJZwTG

trackback

Vulnerability Makes All Facebook Accounts Exposed:

New Vulnerability has been discovered in facebook that … http://bit.ly/cJZwTG

trackback

#Vulnerability Makes All #Facebook Accounts Exposed: [sectechno.com] New Vulnerability has been discovered in… http://dlvr.it/3l0jM

trackback

#Vulnerability Makes All #Facebook Accounts Exposed: [sectechno.com] New Vulnerability has been discovered in… http://dlvr.it/3kwWg ˃

trackback

RT @SecureTechnolog: #Security #infosec Vulnerability Makes All Facebook Accounts Exposed:

New Vulnerability has been discovere… http://bit.ly/cJZwTG

trackback

Vulnerability Makes All Facebook Accounts Exposed http://bit.ly/bxOm4x (via @sectechno) #Security #Infosec #Facebook #Privacy

OmayaBoubaker

j’aime 

Mourad

Thanks for commenting and glad that you like the post!

Manov rao

I don’t beleive in facebook privacy.