Connect with us

FACEBOOK

Facebook will award $ 30000 incentives for exploits that publish Instagram private content

Published

on

Facebook has awarded researchers $ 30,000 for reporting a vulnerability in Instagram’s privacy features.

According to a Medium blog post by bug bounty hunter Mayur Fartade on Tuesday, a series of vulnerable endpoints in the Instagram app could allow an attacker to view private media on the platform without following the target account. ..

This includes private and archived posts, stories and reels.

If an attacker obtains the target user’s media ID by Brute Force or other means, it sends a POST request to Instagram’s GraphQL endpoint, publishing the display URL and image URL along with records such as likes and saves. There is a possibility.

We also found a more vulnerable endpoint that exposes the same information.

Advertisement
free widgets for website

In either case, the attacker could extract sensitive data about your private account without being accepted as a follower. This is an Instagram feature designed to protect your privacy. You can also use the endpoint to extract the address of the Facebook page linked to your Instagram account.

Fartade reported his findings on the first endpoint through the Facebook Bug Reward Program on April 16th.After that, Facebook’s security team announced on April 19th. further Information including replication procedures.

By April 22, the Bug Bounty Hunter report had been triaged, and a day later, Fartade found a second leak endpoint and notified Facebook.

Facebook patched the vulnerable endpoint on April 29, but Fartade states that further fixes are needed to completely resolve the security issue.

By June 15, the first bug bounty hunter to receive a $ 30,000 monetary reward through the Facebook program. The social media giant thanked the researchers for his report.

Advertisement
free widgets for website

ZDNet will contact Facebook and will update as soon as we receive a call back.

See also  Why is Facebook shutting down its facial recognition system and deleting 'faceprints'? - The Guardian

Previous and related coverage


Do you have any hints? Securely contact via WhatsApp | +447713 025 499, or key-based signal: charlie0


Facebook will award $ 30,000 incentives for exploits that publish Instagram private content

Source link Facebook will award $ 30,000 incentives for exploits that publish Instagram private content

Advertisement
free widgets for website

Read More

FACEBOOK

Facebook-Meta Earns the ‘Worst Company of 2021’ Title in This Survey

Published

on

By

facebook-meta-earns-the-‘worst-company-of-2021’-title-in-this-survey-–-news18
Facebook has had its share of controversies this year. The company was under more scrutiny after whistleblower Frances Haugen leaked a series of internal documents.

Facebook parent Meta has been named the Worst Company of the Year (2021) by Yahoo Finance respondents. According to the publication, an “open-ended” survey was published on Yahoo Finance on December 4 and 5, where 1,541 respondents participated. Facebook received 8 percent of the write-in vote, but respondents were seemingly mad about the Robinhood trading app as well. Electric truck startup Nikola, which was named last year’s worst company by the same publication also faced respondents ire.

Yahoo Finance notes, “Facebook has had its share of controversies this year.” Starting in January, Meta-owned WhatsApp got caught up in a huge controversy after the messaging app announced a new privacy policy (Terms of Service). WhatsApp said it would collect user information and share it with third-party apps for a better user experience. However, the app gave users no choice but later made modifications to the policy under pressure. Similarly, the company was under more scrutiny after whistleblower and former Facebook employee Frances Haugen leaked a series of internal documents showing the company’s problematic practices. It was revealed that Meta-owned Instagram had a negative impact on teenage girls, but the company did almost nothing to rectify the problem.

Yahoo Finance even highlights, “At the same time, some critics, including conservatives, say Facebook over-policed the platform’s speech and stifled their voices.” Critics also blame Facebook and other social media platforms for not curbing hate speech that led to Capitol Building riots.

See also  Facebook to charge 2% fee from UK sellers using Marketplace. Details here

However, around 30 percent of Yahoo Finance readers said that Facebook or Meta could redeem itself. One respondent suggested that the company could issue a formal apology for negligence and donate a sizable amount of its profits to a foundation to help reverse its harm.

On the other hand, respondents chose Microsoft as the Company of the Year (2021). The Satya Nadella-led company touched the trillion-mark this year and introduced notable upgrades. The most notable is the Windows 11 OS update that succeeds Windows 10.

Advertisement
free widgets for website
Continue Reading

FACEBOOK

Facebook pays 1.7 Cr fine to Russia after failing to delete content Moscow deems illegal

Published

on

By

facebook-pays-1.7-cr-fine-to-russia-after-failing-to-delete-content-moscow-deems-illegal

In the latest legal tussle with Russia over controversial social media regulation laws, Facebook paid 17 million roubles (Rs 1.7 Crore) for failing to remove content deemed illegal by Moscow. With a threat of potential larger fines looming, Facebook parent company Meta, owned by Mark Zuckerberg, is scheduled to face court next week over repeated violations of Russian legislation on content, Interfax News Agency reported. As per the latest updates, the social media giant could be fined a percentage of its annual revenue.

In October, Moscow sent state bailiffs to enforce the collection of 17 million roubles. Meanwhile, as per Interfax report citing a federal bailiffs’ database, on Sunday, there were more enforcement proceedings against the company. Apart from the popular social media app, Telegram has also paid 15 million roubles in fines for failing to comply with the Russian social media legislations that came into force in 2016.

Facebook pays $53k to Russia for refusing controversial social media laws

It is pertinent to mention that Facebook has locked horns with Moscow earlier in November, resulting in it paying 4 million roubles ($53,000) over its refusal to adhere to Russian data localisation laws, the Moscow Times reported. The Moscow court on November 25 had said that Facebook paid the fine levied in February, following which all proceedings against the US-based social media giant. The payment comes against the litigation filed against the company in 2018, alongside Twitter. The tech companies were also forced to pay an additional 3000 rubles ($40) for failing to comply with user data sharing rules as per the law. The Russian authorities have also previously blocked LinkedIn, owned by Microsoft, for failing to abide by the laws.

See also  Pro-Palestinian Activists Tank Facebook's App Store Rating With 1-Star Reviews

Russian social media laws

As per Moscow Times, under the Russian social media regulation laws, all foreign technology companies are required to store data related to Russian customers and users on servers located in Russia. Additionally, the Russian tech companies will also have to share encryption data with the federal authorities as well as record user calls, messages and civil society group conversation records. The apparatus is said to be a severe breach of privacy rights and unfettered back-door access to personal data that could be used to harass Kremlin critics.

Continue Reading

FACEBOOK

Facebook Messenger Is Launching a Split Payments Feature for Users to Quickly Share Expenses

Published

on

By

Facebook Messenger Is Launching a Split Payments Feature for Users to Quickly Share Expenses

Meta has announced the arrival of a new Split Payments feature in Facebook Messenger. This feature, as the name suggests, will let you calculate and split expenses with others right from Facebook Messenger. This feature essentially looks to bring an easier method to share the cost of bills and expenses — for example, splitting a dinner bill with friends. Using this new Split Payment feature, Facebook Messenger users will be able to split bills evenly or modify the contribution for each individual, including their own.

The company took to its blog post to announce the new Split Payment feature in Facebook Messenger. 9to5Mac reports that this new bill splitting feature is still in beta and will be exclusive to US users at first. The rollout will begin early next week. As mentioned, it will help users share the cost of bills, expenses, and payments. This feature is especially useful for those who share an apartment and need to split the monthly rent and other expenses with their mates. It could also come handy at a group dinner with many people.

With Split Payments, users can add the number of people the expense needs to be divided with and, by default, the amount entered will be divided in equal parts. A user can also modify each person’s contribution including their own. To use Split Payments, click the Get Started button in a group chat or the Payments Hub in Messenger. Users can modify the contribution in the Split Payments option and send a notification to all the users who need to make payments. After entering a personalised message and confirming your Facebook Pay details, the request will be sent and viewable in the group chat thread.

See also  Why is Facebook shutting down its facial recognition system and deleting 'faceprints'? - The Guardian

Once someone has made the payment, you can mark their transaction as ‘completed’. The Split Payment feature will automatically take into account your share as well and calculate the amount owed accordingly.


For the latest tech news and reviews, follow Gadgets 360 on Twitter, Facebook, and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel.

Advertisement
free widgets for website

Tasneem Akolawala is a Senior Reporter for Gadgets 360. Her reporting expertise encompasses smartphones, wearables, apps, social media, and the overall tech industry. She reports out of Mumbai, and also writes about the ups and downs in the Indian telecom sector. Tasneem can be reached on Twitter at @MuteRiot, and leads, tips, and releases can be sent to tasneema@ndtv.com.

Continue Reading

Trending