Public photos on Facebook could've been deleted with just four lines of code, says an online security researcher.
Testing it on his own photos, Muthiyah found a way to manipulate the code so that it deleted one of his images.
"What if your photos get deleted without your knowledge? Obviously that's very disgusting isn't it?" he wrote on his blog
He immediately reported the bug to Facebook's security team.
"They were fast in identifying this issue and there was a fix in place in less than two hours from the acknowledgement of the report."
It does not appear that any misuse has been reported as a result of this bug - and private photos and data were not affected.
A Facebook spokesperson confirmed the sequence of events, saying in a statement: "We received a report about an issue with our Graph API and quickly fixed it
No comments:
Post a Comment