Slashdot is powered by your submissions, so send in your scoop


Forgot your password?
Slashdot Deals: Deal of the Day - Pay What You Want for the Learn to Code Bundle, includes AngularJS, Python, HTML5, Ruby, and more. ×

Submission + - Facebook fixes 'Peeping Tom' webcam bug - AFTER 5 MONTHS (

iComp writes: "Facebook had a busy time over the holiday period fixing several security flaws, including a webcam-related vulnerability that allowed hackers to record video from a user's web camera and post it on their timeline.

"An attacker could trick a user to silently record his webcam video and publish it to his Facebook wall, without the user even knowing about it," according to Aditya Gupta, the Indian security researcher who discovered the flaw. Gupta and fellow security researcher Subho Halder from XY Security earned a $2,500 reward from Facebook for discovering the Cross-Site Request Forgery (CSRF) bug, which stemmed from a failure to apply adequate security controls. Gupta notified Facebook about the "Peeping Tom" bug in July but the social networking giant only recently rolled out a fix.

A video by XY Security illustrating the resolved webcam vulnerability can be found here."

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Facebook fixes 'Peeping Tom' webcam bug - AFTER 5 MONTHS

Comments Filter:

The best way to avoid responsibility is to say, "I've got responsibilities."