Sunday, 24 April 2016

Hacker Installed a Secret Backdoor On Facebook Server to Steal Passwords




Security researcher Orange Tsai of Taiwanese security vendor DEVCORE accidentally came across a backdoor script on one of Facebook’s corporate servers while finding bugs to earn cash reward from Facebook.
Tsai scanned Facebook's IP address space that led him to the files.fb.com domain that was hosting a vulnerable version of the Secure File Transfer application (FTA) made by Accellion and was used by Facebook employees for file sharing and collaboration.

Tsai analyzed the vulnerable FTA and discovered seven security flaws as he explained in his blog post:

  • 3 Cross-site scripting (XSS) flaws,
  • 2 Remote code execution flaws,
  • 2 Local privilege escalation issues.


 

No comments:

Post a Comment