All the latest UK technology news, reviews and analysis

Facebook fixes log-in security glitch

by Shaun Nichols

More from this author

12 Aug 2010

Comment: 1

  • Tweet this
Facebook
Facebook has patched a flaw that left user names open for harvesting

Facebook has sealed a security hole that left users' names and profile pictures available to unrelated users.

The vulnerability was first reported by Secfence Technologies researcher Atul Agarwal on the Full Disclosure security mailing list.

Further reading

Agarwal found that entering an email address and incorrect password into the Facebook log-in screen returned a password incorrect message which contained first name and surname along with a profile photograph.

The researcher suggested that the vulnerability could be used by cyber criminals to match names to mass lists of email addresses. The information could then be used for customised spear phishing operations.

A Facebook spokesperson told V3.co.uk that the issue had been fixed, and that the information is no longer available.

"We have technical systems in place to prevent names and photos showing to unrelated users on log-in, but a recently introduced bug temporarily prevented these from working as intended," the company said. "We remedied the situation swiftly."

Facebook has been under intense pressure from privacy groups, and has spent much of 2010 shoring up its security and providing a clearer explanation of what data is shared and how users can lock down their information.

Do you agree?

Add your comment

Log-in Security Glitch

This 'glitch' may have been sorted in San Francisco, but over here in the United Kingdom (Scotland to be precise), the problem still exists. I have been unable to access my Facebook page since last night. The reset code, designed to presumably re-set the account doesn't work as there is no text box in which to enter it

Posted by: Alan Paterson 14 Aug 2010

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Software

Where To Go screenshot

Where To Go? 4.5.0 HD for iOS

Related white papers

Related articles

Related jobs

Today's top stories

Google logo

Google’s Motorola acquisition cleared by European and US competition authorities

Asus Transformer Prime vs Apple iPad 2

Apple iPad 2 vs Asus Transformer Prime head-to-head review

Apple logo

Apple commissions independent inspection of Foxconn iPhone and iPad factories

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Features

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

Khidr headshot

Intel will prove Steve Jobs wrong in the mobile market

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

PHP Developer - PHP 5, HTML, CSS, MVC

PHP Developers - Fixed Term Contracts (initially 6 months...

Junior Ruby on Rails Developer - London - Permanent

Junior Ruby on Rails Developer - London - Permanent...

Project Manager

A Project Manager is required to join a leading Insurance...

CCIE Network Engineer

CCIE Network Engineer required with fluent Hungarian...

To send to more than one email address, simply separate each address with a comma.