- The giant battle episode of ‘Game of Thrones’ is nearly here Sunday 10:12 PM
- ‘Game of Thrones’ finally revealed the Night King’s endgame Sunday 9:53 PM
- Sri Lankan government shuts down social media in wake of deadly blasts Sunday 7:56 PM
- Amazon Flex drivers now must use selfies to verify identity Sunday 6:34 PM
- #GentrifyingGeorge thinks 152-year-old HBCU should ‘just move’ Sunday 5:27 PM
- Watch out! Tonight’s episode of ‘Game of Thrones’ leaked online (updated) Sunday 3:32 PM
- Videos of people working may be the best thing on TikTok right now Sunday 1:46 PM
- How to watch ‘Game of Thrones’ season 8, episode 2 for free Sunday 7:00 AM
- Gendry is making a new weapon for Arya Stark—but what is it? Sunday 6:30 AM
- The live-action Halo series could be Showtime’s most ambitious project yet Sunday 6:00 AM
- How to watch Turner Classic Movies for free Sunday 5:30 AM
- How to watch Real Madrid vs. Athletic Bilbao online for free Sunday 5:00 AM
- ‘Star Trek’s Jonathan Frakes calls out your lies with this new meme Saturday 3:46 PM
- #JusticeForLucca trends after video shows police slam Black teen’s head into pavement Saturday 3:11 PM
- The internet is shocked to learn that Goombas do, in fact, have arms Saturday 2:02 PM
Thanks to benevolent security researches, a bug that could have allowed hackers to take over Facebook users’ webcams has been squashed.
Facebook announced Wednesday that it had fixed a security issue that would surely have caused the social network a lot of grief and public embarrassment.
A company spokesperson who spoke with Bloomberg confirmed that they had squelched a “peeping Tom” bug that would allowed hackers to use the webcams of unsuspecting Facebook subscribers to record and post videos on their behalf.
Facebook first learned of the bug back July when Aditya Gupta and Subho Halder, two Indian hackers who founded XY Security, notified the social network of the vulnerability. The company will be paying Gupta and Halder $2,500 for their information as part of its white hat program, a bounty system that encourages hackers and security experts to notify Facebook of potential security breaches in exchange for cash.
Gupta broke the news via his personal blog.
“Also, just few hours back, Subho Halder got an email from Facebook Security that we (Aditya Gupta and Subho Halder) will be getting a bounty of $2500 for a bug that we submitted 4 months back, that will come as a Facebook WhiteHat Debit Card,” he wrote.
“The issue was in the video upload feature (via Webcam) of Facebook, as they didnt [sic] had proper security checks enforced. Using this, an attacker could trick a user to silently record his webcam video and publish it to his facebook wall, without the user even knowing about it.”
For its part, Facebook maintains that there were no victims of the bug.
“This vulnerability, like many others we provide a bounty for, was only theoretical, and we have seen no evidence that it has been exploited in the wild,” spokesman Fred Wolens told the Bloomberg.
“Essentially, several things would need to go wrong—a user would need to be tricked into visiting a malicious page and clicking to activate their camera, and then after some time period, tricked into clicking again to stop/publish the video.”
Photo via bfishadow/Flickr
Fidel Martinez is a web culture and politics reporter. His work for the Daily Dot focused on Reddit and YouTube.