Hacker gets full access to facebook user profiles due to security flaw

The developer, Nir Goldshlager, has found a security flaw in Facebook that could have allowed real hackers get into the full Facebook user profiles.

Facebook users don’t get panic. Facebook has already fixed the issue.

Facebook Security FlawDeveloper Nir Goldshlager has written a blog post on how he managed to find out this security flaw in Facebook.

He says “just to clarify there is no need for any installed apps on the victim’s account, Even if the victim never allowed any application in his  Facebook account, I could still be getting full permissions (This bug works on any browser)”.Goldshlager was able to manipulate OAuth so a visitor to a Facebook page could get full access — to inbox’s, private photos and videos — with no expiration. He notified Facebook’s security team and the security flaw has been fixed. For all Goldshlager’s post – Click here.

Leave a Comment