Entries with tag independent security researchers.

Facebook Pays Big Bug Bounty

Facebook has awarded a bug bounty to a researcher who found a vulnerability in its support dashboard that would let hackers delete photographs from a user’s page. The company paid Arul Kumar, an independent security researcher based in India, $12,500 for his detailed report. The support dashboard portal lets users track the progress of reports they make about posts or photos that are abusive or that otherwise violate Facebook’s terms of service. The code that sends this information to Facebook is visible to the user and, thus, could be modified, Kumar discovered. This let him delete the photo from any account. Facebook has reportedly fixed the vulnerability. (PhysOrg)(TechCrunch)

Showing 1 result.