Facebook Inc (FB) Rewards Hacker Who Notified About A Hidden Vulnerability


Facebook Inc (NASDAQ:FB) has happily paid a nice bounty payout to a hacker named Abhibandu. The hacker had discovered a new way to very easily hack into unverified Facebook accounts. In a blog post, he explained exactly how he hacked into the unverified accounts on the social networking platform. When new users sign up for a new account, they receive an email from Facebook to verify who they are. The account remains unverified until the new user checks this email and either clicks on the embedded link or punches the 5-digit code.

New Facebook users should promptly verify their account

Abhibandu successfully created a program that could guess the 5-digit code in less than 15 minutes. That means if a new user doesn’t verify her or his Facebook Inc (NASDAQ:FB) account immediately, a hacker could take it over. But this tactic worked only for unverified accounts, which are mostly new. Therefore, Abhibandu had the challenge of finding a suitable (hackable) account.

He had two ways to do this. One, guess with an email address until the website asked to confirm the account. Two, by searching for email addresses on the platform to see if they have been verified. When you use an email address that already has an unverified Facebook Inc (NASDAQ:FB) account, you get this response (image below). The click on “Insert the confirmation code instead” and there you have it.

Instead of using his skills to harass other Facebook Inc (NASDAQ:FB) users, Abhibandu reported this hack to the social networking giant. Facebook responded in just 8 hours and said it would investigate the issue. The Menlo Park-based company fixed the issue within three days, and decided that Abhibandu deserves a handsome bounty payout.


A tool that hacked Facebook users who tried to hack their friends’ accounts

However, not everyone is a Good Samaritan like Abhibandu. Late last month, an online tool became very popular on Facebook Inc (NASDAQ:FB). The tool developer promised users that they could hack their friends’ Facebook accounts using this tool. When people used this tool to hack their friends’ Facebook accounts, they found that their own accounts had been hacked.

NOTE:  If your Facebook Inc (NASDAQ:FB) account was hacked, you can learn here how to recover your account.

Facebook Inc (NASDAQ:FB) shares were down 0.20% to $63.70 at 10:00 AM EDT on Friday.

For exclusive info on hedge funds and the latest news from value investing world at only a few dollars a month check out ValueWalk Premium right here.

Multiple people interested? Check out our new corporate plan right here (We are currently offering a major discount)

About the Author

Vikas Shukla
Vikas Shukla has a strong interest in business, finance, and technology. He writes regularly on these topics. - He can be contacted by email at vshukla@valuewalk.com or on Twitter @VikShukla10

Be the first to comment on "Facebook Inc (FB) Rewards Hacker Who Notified About A Hidden Vulnerability"

Leave a comment

Your email address will not be published.