The Latest in IT Security

Facebook Accounts Susceptible to Hijacking Due to Legacy API

10
Jul
2014

An old API (application programming interface) that was missed by Facebook allowed a potential attacker to take control over users’ accounts.The flaw, consisting in a mis-configured endpoint, would permit legacy REST API to make calls on behalf of any Facebook user, no authentication being necessary, only the user ID.Security researcher Stephen Sclafani discovered that using a still active REST API, that is the predecessor of Graph API, he could get unauthorized access to a Facebook account an…

Related posts:
  1. Symantec Web Gateway 5.2 Susceptible to SQL Injection and XSS Attacks
  2. Hackers Can Hijack Facebook Accounts by Exploiting Flaw in Android Apps – Video
  3. User Accounts Exposed because of Facebook Applications – Change your Password!
  4. Windows Authentication Protocol Allows Deactivated User Accounts to Live On: Report
  5. Researcher Warns of Account Hijacking Flaws in “Connect with Facebook” Feature

Tags:  
Written by Softpedia
0 Comments
Comments are closed.

Categories

SATURDAY, APRIL 20, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments