Comments on: The Month of Facebook Bugs Report

By: EmilyPayne

EmilyPayne — Mon, 08 Mar 2010 21:31:54 +0000

This is such a strong point “Stop the charade. Nearly all instances of user information and content are essentially public.” No kidding.

Here’s the newest Facebook privacy setting update fail – http://kiwicommons.com/2010/03/kiwi-reveals-facebook-privacy-flaw/

By: Social Media Security » Facebook Worm Uses Clickjacking in the Wild

Social Media Security » Facebook Worm Uses Clickjacking in the Wild — Wed, 06 Jan 2010 15:55:30 +0000

[...] also encouraged Facebook in my Month of Facebook Bugs Report to take clickjacking seriously. The behavior of this worm is only the beginning – as [...]

By: junebisland

junebisland — Fri, 18 Dec 2009 02:06:34 +0000

I HAVE HAD A GUY WHO ADDED ME AS A FRIEND AWHILE AGO BUT TONITE STARTED BEING THREATNING AND NOT VERY NICE ID REPORTED THIS TO THE POLICE AND WAS GOING TO DELEAT HIM FROM MY PROPHILE BUT DECIDED TO HAVE A LOOK AT HIS COMMENTS,ONLY TO FIND HES TALKED ABOUT HACKING INTO HIS FRIENDS ACCOUNTS,HES MEATIONED ABOUT STABBING HIS OWN SISTER WITH A KNIFE,HIS LANGUAGE IS VERY WELL UNREPEATABLE AND HAS MEANTIONED RACIST REMARKS,I WAS TALKING TO ANOTHER FRIEND ON FACE BOOK WHO IS DARK SKINED LIKE MY SON AND FOUND THE REMARKS APPALING IS THIS SORT OF THING ALOUD ON FACEBOOK CAN PEOPLE PUT WOT THEY LIKE ON FACEBOOK EVEN IF IT HURTS OTHER PEOPLE ? BUT I SERGEST THE HACKING GETS LOOKED INTO OR IS THAT ALOUD TOO

By: theharmonyguy

theharmonyguy — Wed, 16 Dec 2009 22:07:03 +0000

Chris, if you're truly in that serious of a situation, stop using Facebook. You can report hacked accounts here and get more info about online safety here. Finally, use complex passwords and keep updated security software on your PC.

By: Chris Castanza

Chris Castanza — Wed, 16 Dec 2009 21:29:45 +0000

My families facebook accounts are being hacked continuously. A hacker has broken my family through harrassing children and parents and we can’t stop it. Is there a way to setup a firewall to determine where the hacking is coming from. My family is broken by these actions and I’m afraid we won’t be able to recover. I am willing to pay for advice, equipment recommendations and installations to uncover this hacker. Please please respond. My family is broken.
Chris Castanza

By: With Facebook Privacy, Everyone Means Everyone | Social Hacking

With Facebook Privacy, Everyone Means Everyone | Social Hacking — Fri, 11 Dec 2009 23:30:21 +0000

[...] In fact, many would argue that you shouldn’t post anything on Facebook that you don’t want the entire Internet to see, since despite Facebook’s many privacy settings, much of your content has long been accessible via Facebook applications – and security issues with applications are well-documented. [...]

By: اختراقات فييسبوك وبرامجه « نورٌ سرمدي وعشقٌ ابدي

اختراقات فييسبوك وبرامجه « نورٌ سرمدي وعشقٌ ابدي — Sun, 25 Oct 2009 14:51:50 +0000

[...] The Month of Facebook Bugs Report [...]

By: New Utility Allows You to Control Facebook Accounts Without the Password | .eduGuru

Wed, 21 Oct 2009 20:13:23 +0000

[...] simple mater to capture a victim’s cookies. As theharmonyguy pointed out last month in his Month of Facebook Bugs, a huge number (9700) of facebook applications are riddled with security holes, with XSS being the [...]

By: Anyone

Anyone — Mon, 19 Oct 2009 13:41:55 +0000

Excellent write up — loved every point you made but especially this one:

“Stop the charade. Nearly all instances user information and content are essentially public. Many users have an understanding of privacy and control not reflected by the findings of this series and others. Either take necessary action to address these issues, or drop illusory privacy controls….”

Exactly. I observe also that purported areas of “required information” (i.e.facebook NEEDS your cell number to verify you are real person….whatever ) -are intentional and not necessary whatsoever in terms of functionality. Such additional data harvesting not only exposes greater risk but also appears subversive as the objective of such requirement really translates as: an avenue to monetizing personal data at some future point. Which users will not know in advance of course.

By: Travis Schack

Travis Schack — Mon, 12 Oct 2009 20:28:43 +0000

Trackback