Facebook was vulnerable to a vulnerability that allowed some users to login without a password.
(Credit: Screenshot by Zack Whittaker/CNET)
Facebook this weekend disabled a loophole that allowed some accounts to be accessed without a password.
The vulnerability, which was posted to Hacker News on Friday, could potentially have allowed an unauthorised user to access another person's Facebook account.
The flaw centred on emails sent out by the social network which contained links that, once clicked, would log a user straight into a Facebook account without the need for any secondary authentication, such as entering a password. The emails could be discovered through a simple Google search query, with 1.3 million accounts potentially open to the flaw, according to Hacker News.
Related stories
- Beware: Fake airline Instagram accounts promise free flights
- Report: Twitter taking on Instagram with its own photo filters
- Facebook wins another round against Paul Ceglia
- ... [Read more]
No comments:
Post a Comment