Thursday, April 9, 01:58
Home investigations Failure on Facebook allows full access to your account by third parties ...

Failure on Facebook allows full access to your account by third parties without your knowledge! [SecNews Research]

The SecNews research team found critical vulnerability in Facebook, which can affect everyone, at least once in their lives, had created an account on platform, and let's is now disabled.

SecNews as part of its research to find vulnerabilities and security gaps on the most popular social networking platforms, recently discovered something that will surely distract you a lot and raise even more concerns about how to secure it your personal life on the Internet.

What really happened?

As part of the research, security experts conducted an experiment whose results were "mind blowing".

Three months ago, a SecNews security researcher created an account GMX email, which he will use to set up a Facebook account to control the registration process offered by the platform.

As you will see in the screenshot, the GMX account was created on 02 September 2019 and the Facebook account was created today, 29 November 2019.

- Advertisement -

The researcher attempted to officially register on the social networking platform by following all the steps required.

Facebook

Once the registration was complete, the researcher was suddenly logged into a user account from India.

Being surprised to have access to another user's account so easily and having done so reset password for security reasons, browsed the profile to see if it was really a reasonable Facebook error.

After investigating the profile, it was an account that had been created by 2015, remained active for a year and a half, and then the account was disabled.

Facebook

The fact that another user - from another end of the earth - managed to activate the account without needing anything more than signing up for the platform proves that, once again, the way Facebook handles them data and our personal information is risky, and even if we think that by shutting down our account we will be safe.

SecNews conducted a thorough investigation of both the Facebook account and the email address associated with it.

"There is a high likelihood of a user in India having previously had the particular email address with which he had linked his Facebook account. OR email address either stopped using it or was blocked from the email service resulting in Facebook being blocked account." the security researcher pointed out.

The email address was probably offered for reuse. Facebook, although completely different at the time of registration, than the original profile, automatically activated the account without any extra confirmation measure.

It's worth noting that in accordance with Facebook's privacy policy, the platform states that "You will not be able to reactivate your account. " after the end of 30 days. In this case, three years had passed.

Facebook

In the end, how easy is it, information and entire accounts that you may have deleted in the past to be in the wrong hands while you feel safe?

How many more Facebook bugs do we need to understand that "that goes up is never lost"?

SecNews signs the validity of this event.

For reasons GDPR and to safeguard personal data, sensitive information in screenshots is hidden.

You can contact our site for further questions on this subject.

This has also been shared on Facebook and we are awaiting a formal response from the popular platform regarding the event.

2 COMMENTS

  1. I have told them since the day they merged with iguru but they never answered me….

    I also get the impression that this response to Peter's comment will appear as a new comment that doesn't seem to be linked to the other text even though I pressed the answer button ....
    (as has happened in many other cases since the merger….)

LEAVE ANSWER

Please enter your comment!
Please enter your name here

LIVE NEWS

OTEAcademy: Telecommunication Program for Scientists & Freelancers, affected by COVID-19

OTEAcademy participates in the special telecommunication program - certification for scientists and freelancers affected by COVID-19.

Facebook wanted to buy Pegasus Spyware to track Apple users

According to NSO CEO Shalev Hulio, Facebook tried to buy ...

7 apps to watch movies online at the same time as your friends

According to the recommendations made by governments and health organizations around the world, ...

Tesla's model uses solar energy to move

The designs for a Tesla Roadster, with an engine that uses solar energy, were recently released on the internet and ...

George Soros is pushing for a postal vote due to COVID-19

George Soros pushes for postal voting due to COVID-19: For the purposes of the vote, George Soros-funded Brennan Center ...

Sony: Reveals the new DualSense controller for the PS5!

Together with the fifth model Playstation, PS5, Sony has unveiled the new DualSense space controller, which retains some of the ...

Koronoios: Fraudsters sell blood and saliva from a survivor on the Dark Web

The ad on Own Shop, a store on the Dark Web, claims that someone has been infected with coronavirus and is now selling ...

UbuntuDDE: Ubuntu Linux with Deepin desktop

UbuntuDDE: Ubuntu Linux with Deepin desktop- Have you ever wondered what would happen if you combined the powers ...

Facebook: Launches new chat application for couples due to COVID-19!

As the governments of a large number of countries have taken measures of social distancing and lockdown, in an effort to limit ...

Netflix: Lock your PIN account for more security

Netflix: Lock your PIN account for more security - Netflix, one of the best known ...