Researchers found a zero-click Facebook account takeover | allinfosecnews.com

Feb. 29, 2024, 9:29 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

A critical vulnerability in Facebook could have allowed threat actors to hijack any Facebook account, researcher warns. Meta addressed a critical Facebook vulnerability that could have allowed attackers to take control of any account. The Nepalese researcher Samip Aryal described the flaw as a rate-limiting issue in a specific endpoint of Facebook’s password reset flow. […]

account account takeover attackers breaking news click control critical critical vulnerability endpoint facebook flaw found hacking hijack information security news issue it information security meta password pierluigi paganini rate researcher researchers security social network social networks takeover threat threat actors vulnerability zero-click

More from securityaffairs.co / Security Affairs

Threat actors hacked the Dropbox Sign production environment 4 hours ago | securityaffairs.co

access addresses authentication breached +24

CISA adds GitLab flaw to its Known Exploited Vulnerabilities catalog 7 hours ago | securityaffairs.co

access access control agency breaking news +28

Panda Restaurant Group disclosed a data breach 11 hours ago | securityaffairs.co

breach breaking news cyber crime cybercrime +14

Ex-NSA employee sentenced to 262 months for attempting to transfer classified documents to Russia 23 hours ago | securityaffairs.co

agency breaking news classified colorado +16

Cuttlefish malware targets enterprise-grade SOHO routers 1 day ago | securityaffairs.co

authentication black lotus black lotus labs cloud +26

A flaw in the R programming language could allow code execution 1 day, 2 hours ago | securityaffairs.co

arbitrary code arbitrary code execution breaking news code +22

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall 1 day, 9 hours ago | securityaffairs.co

apt bypass china china great firewall +21

Notorious Finnish Hacker sentenced to more than six years in prison 1 day, 20 hours ago | securityaffairs.co

aleksanteri kivimäki breaking news center cyber crime +17

CISA guidelines to protect critical infrastructure against AI-based threats 2 days ago | securityaffairs.co

agency ai ai risks analysis +27

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Principal Business Value Consultant

@ Palo Alto Networks | Chicago, IL, United States

View on infosec-jobs.com

Cybersecurity Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX

View on infosec-jobs.com

Penetration Testing Engineer- Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700

View on infosec-jobs.com

Internal Audit- Compliance & Legal Audit-Dallas-Associate

@ Goldman Sachs | Dallas, Texas, United States

View on infosec-jobs.com

Threat Responder

@ Deepwatch | Remote

View on infosec-jobs.com