No reward for hacking Zuckerberg Facebook page

Aug 19, 2013
Facebook CEO Mark Zuckerberg speaks during an event at Facebook headquarters in Menlo Park, California on on April 4, 2013. A researcher who hacked into Facebook chief Mark Zuckerberg's profile to expose a security flaw won't get the customary reward payment from the social network.

A researcher who hacked into Facebook chief Mark Zuckerberg's profile to expose a security flaw won't get the customary reward payment from the social network.

While Facebook offers rewards for those who find security holes, it seems that Palestinian researcher Khalil Shreateh went too far by posting the information on Zuckerberg's own profile page.

Shreateh said on his blog he found a way for Facebook users to circumvent security and modify a user's timeline.

He said he took the unusual step of hacking into Zuckerberg's profile after being ignored by the Facebook security team.

"So i did post to Mark Zuckerberg's timeline , as those pictures shows," he said, including screen shots of the posting.

"Dear Mark Zuckerberg," he wrote."First sorry for breaking your privacy and post to your wall, i had no other choice to make after all the reports i sent to Facebook team. My name is KHALIL from Palestine."

His reward for exposing the flaw was having his Facebook account disabled.

He later got a message saying, "We are unfortunately not able to pay you for this because your actions violated our Terms of Service. We do hope, however, that you continue to work with us to find vulnerabilities in the site."

This video is not supported by your browser at this time.

Facebook said it appreciates help with security but not by hacking into .

Facebook Matt Jones posted a comment Sunday on a security forum saying "we fixed this bug on Thursday," and admitted that "we should have asked for additional... instructions after his initial report."

"We get hundreds of reports every day," Jones said. "We have paid out over $1 million to hundreds of reporters. However, many of the reports we get are nonsense or misguided."

Jones added that "the more important issue here is with how the bug was demonstrated using the accounts of without their permission."

"We welcome and will pay out for future reports from him (and anyone else!) if they're found and demonstrated within these guidelines," Jones said on the YCombinator hacker news forum.

Independent security researcher Graham Cluley said he had "some sympathy" with Facebook on the issue.

"Although he was frustrated by the response from Facebook's security team, Shreateh did the wrong thing by using the flaw to post a message on Mark Zuckerberg's wall," Cluley said on his blog.

Explore further: Facebook lets friends help unlock accounts

add to favorites email to friend print save as pdf

Related Stories

Facebook fixes photo privacy bug

Dec 07, 2011

Facebook has fixed a bug that allowed the viewing of some private photographs of other members and which was reportedly used to access personal pictures of founder Mark Zuckerberg.

Facebook tightens user security

Jan 26, 2011

Facebook on Wednesday announced heightened privacy controls for members of the world's largest online social network.

Facebook CEO meets SKorean president

Jun 18, 2013

Facebook CEO Mark Zuckerberg has met South Korean President Park Geun-hye in Seoul to discuss ways to stimulate entrepreneurship and venture firms in Asia's fourth-largest economy.

Recommended for you

Brazil passes trailblazing Internet privacy law

3 hours ago

Brazil's Congress on Tuesday passed comprehensive legislation on Internet privacy in what some have likened to a web-user's bill of rights, after stunning revelations its own president was targeted by US ...

Research shows impact of Facebook unfriending

18 hours ago

Two studies from the University of Colorado Denver are shedding new light on the most common type of `friend' to be unfriended on Facebook and their emotional responses to it.

LinkedIn membership hits 300 million

Apr 18, 2014

The career-focused social network LinkedIn announced Friday it has 300 million members, with more than half the total outside the United States.

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

machinephilosophy
not rated yet Aug 21, 2013
It's precisely the "within the guidelines" constraint that nullifies any pretension about wanting to really test the system. Idiots. Any time you have an ORGANIZED GROUP do anything, over time it devolves to the mediocrity, stupidity, and self-stultifying characteristics of a perennial cat-spat garden club. Status-quo organizationalism guarantees permanent bluntedness.

And if you want to a guarantee to keep out the innovative geniuses, just have a department called PERSONNEL.

More news stories

Robot scouts rooms people can't enter

(Phys.org) —Firefighters, police officers and military personnel are often required to enter rooms with little information about what dangers might lie behind the door. A group of engineering students at ...

Finalists named in Bloomberg European city contest

Amsterdam wants to create an online game to get unemployed young people engaged in finding jobs across Europe. Schaerbeek, Belgium, envisions using geothermal mapping to give households personalized rundowns of steps to save ...

Internet TV case: US justices skeptical, concerned

Grappling with fast-changing technology, U.S. Supreme Court justices debated Tuesday whether they can protect the copyrights of TV broadcasters to the shows they send out without strangling innovations in ...

Brazil passes trailblazing Internet privacy law

Brazil's Congress on Tuesday passed comprehensive legislation on Internet privacy in what some have likened to a web-user's bill of rights, after stunning revelations its own president was targeted by US ...

In the 'slime jungle' height matters

(Phys.org) —In communities of microbes, akin to 'slime jungles', cells evolve not just to grow faster than their rivals but also to push themselves to the surface of colonies where they gain the best access ...

New alfalfa variety resists ravenous local pest

(Phys.org) —Cornell plant breeders have released a new alfalfa variety with some resistance against the alfalfa snout beetle, which has ravaged alfalfa fields in nine northern New York counties and across ...