Hijacking in Facebook, Due to Lack of Security and Other Loop Holes
Security and administrative loop holes in popular social networking website Facebook have been bared after a group calling itself “Control Your Info” hijacked some 300 groups sites.
Technology experts believe that the attack on Facebook groups’ sites will prove that Facebook has been negligent in implementing its security measures. The experts also pointed that Control Your Info was able to acquire hundreds of group sites by simply taking over “unadministered” sites.
After taking over the group sites, Control Your Info then posted a message to the homepage of the groups, which states: “Hello, we hereby announce that we have officially hijacked your Facebook group account. This means we control a certain part of the information about you on Facebook. If we wanted we could make you appear in a bad way which could damage your image severely.”
Foreground Security cofounder and CIO Dave Amsler said that the incidents posed very serious threat to the members of each group, saying that the illegitimate administrators now have access on personal info, email address, and other important data about the members.
But Amsler stressed that money could not be an issue since no credit card numbers were usually shared in the following groups.
Meanwhile, sought for comment, the group did not respond to any email request sent to its website.
On the other hand, Facebook media relations officials, in a statement, said that there was no truth in reports that hundreds of Facebook group accounts have been hacked, adding that there were no confidential or sensitive information at risk.
“The mentioned groups have been abandoned by its owners or were no longer active. Members now have the option to takeover the sites as administrators should they wish to continue communication with each member of the group,” Facebook said.
“These administrators, in any way, have no access to private account information shared by users. Members, likewise, have the option to leave the group any time they wanted,” the social networking site added.
But Amsler remained unconvinced by the statement, saying that social networking platforms, particularly Facebook, have major security lapses that needed to be addressed immediately.
“No one is bothering to secure anything, anymore,” he said.
Related posts:
