Facebook SDK Vulnerability Puts Millions of Smartphone Users' Accounts at Risk
2014-07-04, 12:46 PM,
#1
[Image: facebook-sdk-access-token-hacking.jpg]

Quote:ecurity researchers from MetaIntell, the leader in intelligent led Mobile Risk Management (MRM), have discovered a major security vulnerability in the latest version of Facebook SDK that put millions of Facebook user's Authentication Tokens at risk.

Facebook SDK for Android and iOS is the easiest way to integrate mobile apps with Facebook platform, which provides support for Login with Facebook authentication, reading and writing to Facebook APIs and many more.

Facebook OAuth authentication or ‘Login as Facebook’ mechanism is a personalized and secure way for users to sign into 3rd party apps without sharing their passwords. After the user approves the permissions as requested by the application, the Facebook SDK implements the OAuth 2.0 User-Agent flow to retrieve the secret user’s access token required by the apps to call Facebook APIs to read, modify or write user's Facebook data on their behalf.

Continue reading here...
Reply
2014-07-04, 12:49 PM,
#2
Cman facebook, they are making the same mistake from 2009 to 2010 There was kind a same vurn that is alowing any one who know how to accesit to clone the messages.

Those years many ebay auctions like this one were posted :D
http://www.ebay.co.uk/itm/Pandora-Pink-S...3a92f65a40
Reply


Possibly Related Threads...
Thread Author Replies Views Last Post
  How many email accounts do you have in total cellmind3 24 418 2017-09-16, 12:06 PM
Last Post: rockerzz
  Does people really think they have earned millions by checking there emails r00t3d 16 598 2017-07-11, 07:41 PM
Last Post: r00t3d
  Uber accounts with promo Lolgend 3 263 2017-05-23, 01:53 PM
Last Post: Lolgend
  Inside a Russian IG BOT Farm with MILLIONS of Accounts! julianthr 10 506 2017-05-20, 01:03 PM
Last Post: AlifDomain
  Facebook research targeted insecure youth, leaked documents show extremee 10 421 2017-05-07, 10:43 AM
Last Post: dedivah6




About Us | Contact Us | CPA Elites | Advertise | Stats | Staff Team

© 2013-2017 CPA Elites Ltd
Enhanced by MyBB and WallBB
Return to top