- People are roasting this ‘traditional’ take on marriage with a hilarious meme 6 Years Ago
- The internet just collectively realized that the Neopets of the world must be hungry Today 4:00 PM
- Alt-right message board 8chan was served a search warrant Today 3:06 PM
- O.J. Simpson just joined Twitter in the most bizarre fashion Today 1:20 PM
- Prominent phone-hacking firm says it can unlock any iPhone for law enforcement Today 12:39 PM
- Hundreds of police officers belong to extremist Facebook groups, investigation finds Today 9:31 AM
- How to watch Tyson Fury vs. Tom Schwarz online Today 8:00 AM
- ‘Late Night’ is a disappointing, tepid comedy Today 7:00 AM
- How to stream ‘Love It or List It’ for free Today 7:00 AM
- How to watch the 2019 Concacaf Gold Cup online for free Today 6:55 AM
- Borderlands 3 preview suggests the aging series can still hang with the cool kids Today 6:30 AM
- How to stream the 2019 College World Series for free Today 6:00 AM
- Police try to solve domestic violence by giving victims blunt kitchen knives Friday 5:40 PM
- Privacy activist Ola Bini detained for 2 months in Ecuador without charges Friday 5:01 PM
- Twitter says suspending ‘God’ for a pro-LGBTQ tweet was an ‘error’ Friday 4:14 PM
Thanks to benevolent security researches, a bug that could have allowed hackers to take over Facebook users’ webcams has been squashed.
Facebook announced Wednesday that it had fixed a security issue that would surely have caused the social network a lot of grief and public embarrassment.
A company spokesperson who spoke with Bloomberg confirmed that they had squelched a “peeping Tom” bug that would allowed hackers to use the webcams of unsuspecting Facebook subscribers to record and post videos on their behalf.
Facebook first learned of the bug back July when Aditya Gupta and Subho Halder, two Indian hackers who founded XY Security, notified the social network of the vulnerability. The company will be paying Gupta and Halder $2,500 for their information as part of its white hat program, a bounty system that encourages hackers and security experts to notify Facebook of potential security breaches in exchange for cash.
Gupta broke the news via his personal blog.
“Also, just few hours back, Subho Halder got an email from Facebook Security that we (Aditya Gupta and Subho Halder) will be getting a bounty of $2500 for a bug that we submitted 4 months back, that will come as a Facebook WhiteHat Debit Card,” he wrote.
“The issue was in the video upload feature (via Webcam) of Facebook, as they didnt [sic] had proper security checks enforced. Using this, an attacker could trick a user to silently record his webcam video and publish it to his facebook wall, without the user even knowing about it.”
For its part, Facebook maintains that there were no victims of the bug.
“This vulnerability, like many others we provide a bounty for, was only theoretical, and we have seen no evidence that it has been exploited in the wild,” spokesman Fred Wolens told the Bloomberg.
“Essentially, several things would need to go wrong—a user would need to be tricked into visiting a malicious page and clicking to activate their camera, and then after some time period, tricked into clicking again to stop/publish the video.”
Photo via bfishadow/Flickr
Fidel Martinez is a web culture and politics reporter. His work for the Daily Dot focused on Reddit and YouTube.