[ad_1]
To end a year when Facebook was not at all silent about security because of the Cambridge Analytica scandal, the company has disbursed this year the highest amount ever paid to one. of its researchers who discovered a bug in the social network: $ 50,000.
The bug discovered by the employee was in the developer's signature mechanism. It was discovered that, in some cases, a person could manipulate signatures to receive updates that should not have been allowed. An attacker, for example, could frequently receive updates about people he liked or commented on in a specific post.
Dan Gurfinkel, head of security at Facebook, said that it was not uncommon to receive reports of serious or critical errors from him. researchers. "The September security incident involved three different bugs interacting with each other," he explains, explaining that this report had prompted Facebook to discover a whole host of new bugs. potential exposures that, if they were longer to find, could have been used maliciously
At the start of the rewards program in 2011, Facebook had already disbursed $ 7.5 million, compared to $ 1.1 million in 2018.
Source: Wired
[ad_2]
Source link
