Zuckerberg’s Facebook page hacked

A Palestinian cyber specialist said he felt obliged to write on the social network founder’s restricted wall, after Facebook’s security team refused to acknowledge that a critical vulnerability allows anyone to post on anyone's wall.

Khalil Shreateh, who identified the bug, reported the flaw through Facebook’s security feedback page, which offered a minimum reward of $500 for each verified security bug writeup.

The security team denied the bug, even though Shreateh enclosed a link to a post he made on the timeline of a random girl who studied at the same college as Zuckerberg.

“Sorry, this is not a bug,” Facebook’s security team said in response to Shreateh's second report, in which he offered to reproduce the discussed vulnerability on a test account of a Facebook security expert.

Screenshots on his blog show that Shreateh shared details of the exploit, as well as his disappointing experience with the security team, on the Facebook founder’s wall.

“Just minutes after the post, Khalil says he received a response from a Facebook engineer requesting all the details about the vulnerability. His account was blocked while the security team rushed to close the loophole. After receiving the third bug report, a Facebook security engineer finally admitted the vulnerability but said that Khalil won’t be paid for reporting it because his actions violated the website’s security terms of service,” RT reports. 

ThreatWatch is a regularly updated catalog of data breaches successfully striking every sector of the globe, as reported by journalists, researchers and the victims themselves.