Wednesday, March 16, 2011

Facebook vulnerability: possible contributions under a false name

As previously reported, hackers exploit a vulnerability in the groups function of Facebook. The crooks first align a new group and add any of their Facebook friends. These persons, according to just get a message about it, but are not asked in advance. Then, the hacker only missing an associated e-mail address.

He usually gets displayed without problems in the profile of the victims. Now the attacker is able to e-mails with the sender address of the victim in the Facebook group to send it. The text ends up as a contribution in the group - under the name of the user, the first of which suspects nothing.

Facebook knows the problem and is working on a solution.

No comments:

Post a Comment