Security Researcher Posts to Mark Zuckerberg's Wall To Prove His Exploit Works
Earlier this week, security researcher Khalil Shreateh discovered a Facebook bug that allowed a hacker to post on anyone’s wall — even if they weren’t that person’s friend.
While he was able to prove to Facebook that his bug was legit (despite an initial response that it wasn’t a bug at all), Facebook wasn’t too happy with the way he did it: by using the bug to post on Zuckerberg’s otherwise friends-only wall.
Security research can be a pretty tough balancing act. If you don’t follow a company’s responsible reporting terms to a T, you might be robbing yourself of your fair share of recognition and, if the company is one of many that gives bug bounties, a chunk of cash. Alas, exploiting your way onto Zuck’s timeline… doesn’t exactly comply with Facebook’s reporting rules.
- Microsoft and Facebook sponsor Internet Bug Bounty program, offer cash for hacking the Internet stackThu, 2013-11-07 00:14
- Fri, 2013-10-18 13:35
- Mon, 2013-09-09 01:53