Facebook has proclaimed of fixing of a bug that could have been employed by the fraudsters to stealthily reveal the full name and picture of a Facebook user by merely adding a fake email id and wrong password.
Secfence Technologies's Atul Agarwal, stated that whenever a user logs in with an incorrect password in the home page, the website claimed the message 'Incorrect password' where the complete name and profile picture popped up.
The above flaw was used by the spammers to link random e-mail IDs with Facebook users, thus offering them an exact detail of name and profile pics.
The attackers on the other hand might use the information to plan all sorts of phishing attacks on Facebook users.
The Secfence blog stated: "Facebook users have no control over this, as this works even when you have set all privacy settings properly. Harvesting this data is very easy, as it can be easily bypassed by using a bunch of proxies."
Related News
- Facebook to boost users’ security with a new remote logout feature
- Facebook Advertising
- Facebook Faces Users’ Wrath over Privacy Settings
- Employees Instructed To Share Facebook Passwords with Employers!
- Germany Regulators Fine Facebook for Violating Privacy Rules
- Facebook begins public test of new ‘Facebook Questions’ service
- Facebook rolls out new Privacy Page to serve as an open discussion forum
