|
 |
|
Shop
You are here: News > News > Unauthorized individuals erase Facebook friends with ease
| » IT Security NEWS |
| » 23 May 2010 |
| Unauthorized individuals erase Facebook friends with ease |
Errors in the security system of Facebook constantly pop out one after another during the previous weeks. And based on the most recent report, there is a new glitch present in this social networking site that gives an abusive online crook the power to remove all the friends in the contact list of a Facebook user without his or her consent.
Friends disappear without consent from concerned users
It was on Wednesday this week when the Facebook security vulnerability was discovered by a college student. It was Steven Abbagnaro who first noticed the presence of this bug. And after 48 hours, it was found to have been persisting when another individual found that the glitch was still continuously abused and his friends on Facebook were deleted.
A proof-of-concept code was created by Abbagnaro and this allows utilization of the personal information, which can be easily gathered through Facebook. And, this will then lead to efficient removal of all the contacts in the list of the user of this popular social networking service.
Combinations of attacks is also possible
In addition, vicious online criminals may use this security glitch with a spam to advance the suspicious online activity. Other than spamming, making use of a self-replicating worm code is also utilized so as to bring more harm on the social networking website.
Similar glitches attack the large social network
If this incident would be compared with the one that occurred during the first part of this week, it can be concluded that the two are of the same type of bug, which is a cross-site request forgery (CSRF) glitch. The bug, which is also a CSRF type of glitch, allows the privately-set pieces of personal information like birthdays and some other critical data to appear public.
Representatives from this large social networking site assured the users that their engineers already worked on patching up the said glitch. However, it can be considered that it is very much too early to make such conclusions.
Malicious activities keep on flooding the web
As of the present, there is still a great possibility of abusing the vulnerability via the “like” function of the website. By clicking the said button, the users give their support to online advertisements and other matters of similar kind.
On Friday, a vigorous-type of worm attacked the large social networking site Facebook. And, this infection allowed posting of message on a user’s wall, which will direct an individual to a website named fbhole.com.
Read more information about SecPoint by viewing the following pages: About SecPoint, SecPoint Products, and SecPoint Press. |
 |
 |
Awards & Reviews | |||||
|
||||||
|
|
Subscribe to our Mailing List |
|
|
|
|
Customer References | |
|
||
