29 Oct 2011
Windows 7 Home Premium x64 SP1
Bay Area Peninsula
Security researcher finds major security flaw in Facebook
A security researcher has discovered a major security hole affecting the most popular social networking site, Facebook.
Basically, the researcher found a way to upload executable files — such as those most commonly used by malicious software — on the social network site for potential sharing. Needless to say that the potential for abuse by malicious attackers is pretty evident.
When using the Facebook ‘Messages’ tab, there is a feature to attach a file. Using this feature normally, the site won’t allow a user to attach an executable file. A bug was discovered to subvert this security mechanisms. Note, you do NOT have to be friends with the user to send them a message with an attachment.
|My System Specs || |