Welcome to WebmasterWorld Guest from 54.145.209.107

Forum Moderators: httpwebwitch & not2easy

Mark Zuckerberg's Private Page Hacked To Highlight Security Flaw

   
11:39 am on Aug 19, 2013 (gmt 0)

WebmasterWorld Administrator engine is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month Best Post Of The Month



That's pretty mean-spirited not to pay out, imho.

A Palestinian programmer has highlighted a flaw in Facebook's security system by posting a message on Mark Zuckerberg's private page.

Mr Shreateh said he had tried to use Facebook's White Hat scheme, which offers a monetary reward for reporting vulnerabilities, but had been ignored. Facebook said it had fixed the fault but not would be paying Mr Shreateh.
Mr Shreateh found a security breach that allowed Facebook users to post messages on the private "walls" of people who had not approved them as "friends", overriding the site's privacy features. Mark Zuckerberg's Private Page Hacked To Highlight Security Flaw [bbc.co.uk]
An engineer on Facebook's security team, Matt Jones, posted a public explanation saying that although Mr Shreateh's original email should have been followed up, the way he had reported the bug had violated the site's "responsible disclosure policy".

He added that as Mr Shreateh had highlighted the bug "using the accounts of real people without their permission", he would not qualify for a payout.
2:41 pm on Aug 19, 2013 (gmt 0)

WebmasterWorld Senior Member zeus is a WebmasterWorld Top Contributor of All Time 10+ Year Member



fu.. FB I have never been a member, but I see how it slowly is getting more ignored and unpopular everywhere, be cause of its Privacy is like google and the focus is just on money making.
2:55 pm on Aug 19, 2013 (gmt 0)

WebmasterWorld Administrator brotherhood_of_lan is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month



There's no excuses, FB should pay up.

"He added that as Mr Shreateh had highlighted the bug "using the accounts of real people without their permission", he would not qualify for a payout. "

I believe it's against their ToS to be creating fake accounts, so...
4:02 pm on Aug 20, 2013 (gmt 0)

WebmasterWorld Senior Member



If Facebook has any ethics, I haven't seen a sign of them. They need to pay this person!
7:13 am on Aug 21, 2013 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



If they can track down his original white hat attempt, they should pay. Otherwise they shouldn't.
9:36 am on Aug 21, 2013 (gmt 0)



This person is great... He has done this kinds of more jobs during previous year.
9:38 am on Aug 21, 2013 (gmt 0)



And still you can post on mark's wall using inspect element method.
3:29 pm on Aug 23, 2013 (gmt 0)



once again the little guy that proves a point, gets f'd over. wow FB. such a big name and you don't even follow up on your promise. smh
3:35 pm on Aug 23, 2013 (gmt 0)

WebmasterWorld Administrator brotherhood_of_lan is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month



Last I read on this, some people clubbed together and raised a $10K 'reward', so at the very least the guy has been compensated for his good intentions.
 

Featured Threads

Hot Threads This Week

Hot Threads This Month