A Hacker Hacked Mark Zuckerberg Facebook Fanspage Account

facebookcity

A Hacker Hacked Mark Zuckerberg Facebook Fanspage Account - A jobless Palestinian developer named Khalil Shreateh tried many times to report a bug to Facebook’s security team. once nobody returned to him, he took the (dubiously) logical next step: He exploited the bug to go away a public treat Facebook business executive Mark Zuckerberg’s wall.

A Hacker Hacked Mark Zuckerberg Facebook Fanspage Acoount


“First sorry for breaking your privacy and post to your wall,” an apparent screenshot of the hack reads. “I has [sic] no other choice to make after all the reports i sent to Facebook team.”

The breaking and entering, careful on Shreateh’s diary (and in many agitated posts from Facebook developers on Hacker News), has been over alittle embarrassing for Facebook.

But it’s not specifically interesting that Shreateh found a bug — that happens all the time. In fact, Facebook runs a program that encourages white hat hackers to search out and report bugs in Facebook infrastructure in exchange for a money reward. what's uncommon is that Facebook didn’t answer Shreateh’s initial reports concerning the bug, which Shreateh then exploited it in violation of Facebook’s policies for white hat hackers.

“The a lot of vital issue here is with however the bug was incontestible victimization the accounts of real folks while not their permission,” insisted Matt Jones, a Facebook engineer, on the forum Hacker News. “Exploiting bugs to impact real users isn't acceptable behavior for a white hat.”

So why didn’t Facebook respond promptly to Shreateh’s reports? decision making by the e-mail threads with Facebook’s security team that Shreateh denote on his diary, it's like his bug was lost — virtually — in translation. Shreateh’s English may be a very little shaky, and also the Facebook developer he corresponded with doesn’t appear to know the report:

    Rhe vulnerability allow’s facebook users to share posts to non friends facebook users , i created a post to Sarah.goodin timeline and that i got success post … after all you will cant see the link as a result of sarah’s timeline friends posts shares solely along with her friends , you would like to be an acquaintance of her to ascertain that post otherwise you will use your own authority .

“I am sorry this is often not a bug,” a Facebook worker reportedly unemployed back.

On Hacker News, Jones explains that they typically get reports from “people whose English isn’t nice,” which typically “it’s one thing we tend to work with simply fine.” in keeping with Facebook’s own reports, the corporate depends heavily on international white hat hackers to stay its system secure — of the 329 legitimate bugs reportable by white hats within the past 2 years, over 260 came from outside the u.  s..

The network joins many different school firms, as well as Google, Microsoft, PayPal and Mozilla, that pay bounties to white hat hackers and consider them to assist keep systems secure.

Shreateh reports he won't, however, receive a bounty for his work — per AN e-mail from Facebook, he profaned the terms of the program once he hacked Zuckerberg’s account. That has angered some within the security community, WHO argue Shreateh exposed a crucial vulnerability in honesty, victimization the sole means that accessible. The bug has since been fastened, in keeping with Jones’s Hacker News post.

“I will speak hours and hours concerning facebook security team and their secure vogue, which will take them down by hackers, that mean iam [sic] not a foul hacker and that i ne'er been,” Shreateh denote on his Facebook Sunday night. His current Facebook avatar may be a picture of Edward Snowden. “You ought to recognize that iam not a hacker.”


source : 
washingtonpost.com

Sponsored
Copyright 2011. All rights reserved.
artist photos