Thursday, January 27, 2011

New Facebook Photo Exploit


Facebook photo exploit allows you to view any albums of non-friends

Facebook has a plethora of personal information that when any exploit, no matter how small, surfaces, it can become a huge security risk. A new exploit has surfaced that allows anyone to access any photo album of non-friends as long as you have the link.

A user on Reddit has posted the above image and Neowin has verified that it does indeed work. By following the simple steps, you can bypass the security of Facebook and view photos of others online. The exploit comes hot on the heels of Facebook increasing its security by using https.
The above exploit is just the latest in attempts to bypass the popular social networking sites security. Facebook has come under fire in the past for its questionable security practices because of the amount of information the website contains.


Source: http://www.neowin.net

Reddit discussion and POC: http://www.reddit.com

See also :
Zuckerberg's Facebook page hacked ( happened a few days ago )

Facebook Enables HTTPS So You Can Share Without Being Hijacked