Facebook loophole making accounts accessible
London: Social networking giant Facebook has moved quickly to shut down a loophole that made some accounts accessible without even using a password.
The bug was exposed in a message posted to the Hacker News website.
The message contained a search string that, when used on Google, returned a list of links to 1.32 million Facebook accounts.
In some cases clicking on a link logged in to that account without the need for a password, the BBC reports.
All the links exposed the email addresses of Facebook users, the report said.
Facebook security engineer Matt Jones said the links were typically only sent to the email addresses of account holders. Links sent in this way can only be clicked once.
“For a search engine to come across these links, the content of the emails would need to have been posted online,” he said.
Jones suspected this is what happened as many of the email addresses exposed were for throwaway mail sites or for services that did a bad job of protecting archived messages.
More from India
More from World
More from Sports
More from Entertaiment
- Lashkar-e-Toiba plotting 26/11-style attack in India with the help of Pak Navy, ISI?
- Amitabh Bachchan's Twitter account hacked, 'sex sites' planted as following
- Radhe Maa approached to be a part of Bigg Boss 9?
- What was Indrani Mukherjea's original plan to murder Sheena Bora?
- Pakistan can inflict 'heavy losses' in war with India: Khawaja Muhammad Asif
- Satire website publishes article on Osama bin Laden being alive and quotes Edward Snowden
- Indrani's former brother-in-law claims Sheena was Siddharth Das' daughter
- Sheena Bora murder case: 'Indrani Mukerjea's father thrashed her with belt'
- Amitabh Bachchan's Twitter account hacked, sex sites planted as 'following'
- Leaked! Tentative list of 'Bigg Boss 9' revealed and guess who's hosting?