Welcome to WebmasterWorld Guest from 50.19.57.50

Forum Moderators: httpwebwitch & not2easy

Message Too Old, No Replies

Mark Zuckerberg's Private Page Hacked To Highlight Security Flaw

     
11:39 am on Aug 19, 2013 (gmt 0)

Administrator from GB 

WebmasterWorld Administrator engine is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month Best Post Of The Month

joined:May 9, 2000
posts:23256
votes: 359


That's pretty mean-spirited not to pay out, imho.

A Palestinian programmer has highlighted a flaw in Facebook's security system by posting a message on Mark Zuckerberg's private page.

Mr Shreateh said he had tried to use Facebook's White Hat scheme, which offers a monetary reward for reporting vulnerabilities, but had been ignored. Facebook said it had fixed the fault but not would be paying Mr Shreateh.
Mr Shreateh found a security breach that allowed Facebook users to post messages on the private "walls" of people who had not approved them as "friends", overriding the site's privacy features. Mark Zuckerberg's Private Page Hacked To Highlight Security Flaw [bbc.co.uk]
An engineer on Facebook's security team, Matt Jones, posted a public explanation saying that although Mr Shreateh's original email should have been followed up, the way he had reported the bug had violated the site's "responsible disclosure policy".

He added that as Mr Shreateh had highlighted the bug "using the accounts of real people without their permission", he would not qualify for a payout.
2:41 pm on Aug 19, 2013 (gmt 0)

Senior Member

WebmasterWorld Senior Member zeus is a WebmasterWorld Top Contributor of All Time 10+ Year Member

joined:Apr 28, 2002
posts:3444
votes: 1


fu.. FB I have never been a member, but I see how it slowly is getting more ignored and unpopular everywhere, be cause of its Privacy is like google and the focus is just on money making.
2:55 pm on Aug 19, 2013 (gmt 0)

Senior Member from GB 

WebmasterWorld Senior Member brotherhood_of_lan is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Jan 30, 2002
posts:4843
votes: 2


There's no excuses, FB should pay up.

"He added that as Mr Shreateh had highlighted the bug "using the accounts of real people without their permission", he would not qualify for a payout. "

I believe it's against their ToS to be creating fake accounts, so...
4:02 pm on Aug 20, 2013 (gmt 0)

Senior Member

WebmasterWorld Senior Member 5+ Year Member

joined:Jan 1, 2011
posts:1358
votes: 18


If Facebook has any ethics, I haven't seen a sign of them. They need to pay this person!
7:13 am on Aug 21, 2013 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:Dec 5, 2002
posts: 1853
votes: 3


If they can track down his original white hat attempt, they should pay. Otherwise they shouldn't.
9:36 am on Aug 21, 2013 (gmt 0)

New User

joined:Aug 21, 2013
posts: 2
votes: 0


This person is great... He has done this kinds of more jobs during previous year.
9:38 am on Aug 21, 2013 (gmt 0)

New User

joined:Aug 21, 2013
posts: 2
votes: 0


And still you can post on mark's wall using inspect element method.
3:29 pm on Aug 23, 2013 (gmt 0)

Junior Member

joined:Feb 20, 2013
posts: 60
votes: 0


once again the little guy that proves a point, gets f'd over. wow FB. such a big name and you don't even follow up on your promise. smh
3:35 pm on Aug 23, 2013 (gmt 0)

Senior Member from GB 

WebmasterWorld Senior Member brotherhood_of_lan is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Jan 30, 2002
posts:4843
votes: 2


Last I read on this, some people clubbed together and raised a $10K 'reward', so at the very least the guy has been compensated for his good intentions.
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members