(Image Source: Mashable)

 

BY MEREDITH BALDWIN

 

ANCHOR CHRSITINA HARTMAN

 

If you’ve downloaded the Facebook app, or actually any app that connects to your Facebook account, all of your personal information online could now be on the line. Slash Gear explains.

 

 “The Facebook app you’ve got on your mobile device, be it a tablet, smartphone, or something in-between, has a piece of it which is relatively unsecured and contains all of the information needed for a 3rd party to gain access to your Facebook account.”

 

Here’s how it works: an outside app creates what’s called a property list — which is known in the HTML coding world as the extension “.plist” (dot plist). Once a hacker gets a hold of your .plist (dot plist) — well, he virtually steals your identity. Here’s ZDNet.

 

“When the Facebook app is opened, the hacker is logged into Facebook as you. He or she has complete access to your account. … [and] can log into other apps on his or her device that require Facebook. For example, he or she can start playing Draw Something as you, with your friends.”

 

Hackers would have access to your wall posts, private messages sent, applications added, pictures posted — and that’s what’s got Facebook developers worried. They’re reportedly working to fix the problem, although Gareth Wright, an app developer who discovered the problem, says it’s going to take more than just plugging the hole.

 

 “Facebook [developers] are aware and working on closing the hole, but unless app developers follow suit and start encrypting the 60 day access token Facebook supplies, it’s only a matter of time before someone starts using the info for ill purpose … if they aren’t already.”

 

The Register says even though Facebook is trying to fix the problem, it doesn’t have any advice as to how to protect yourself in the meantime. 

Security Hole Lets Hackers Steal Facebook ID

by
0
Transcript
Apr 6, 2012

Security Hole Lets Hackers Steal Facebook ID

 

(Image Source: Mashable)

 

BY MEREDITH BALDWIN

 

ANCHOR CHRSITINA HARTMAN

 

If you’ve downloaded the Facebook app, or actually any app that connects to your Facebook account, all of your personal information online could now be on the line. Slash Gear explains.

 

 “The Facebook app you’ve got on your mobile device, be it a tablet, smartphone, or something in-between, has a piece of it which is relatively unsecured and contains all of the information needed for a 3rd party to gain access to your Facebook account.”

 

Here’s how it works: an outside app creates what’s called a property list — which is known in the HTML coding world as the extension “.plist” (dot plist). Once a hacker gets a hold of your .plist (dot plist) — well, he virtually steals your identity. Here’s ZDNet.

 

“When the Facebook app is opened, the hacker is logged into Facebook as you. He or she has complete access to your account. … [and] can log into other apps on his or her device that require Facebook. For example, he or she can start playing Draw Something as you, with your friends.”

 

Hackers would have access to your wall posts, private messages sent, applications added, pictures posted — and that’s what’s got Facebook developers worried. They’re reportedly working to fix the problem, although Gareth Wright, an app developer who discovered the problem, says it’s going to take more than just plugging the hole.

 

 “Facebook [developers] are aware and working on closing the hole, but unless app developers follow suit and start encrypting the 60 day access token Facebook supplies, it’s only a matter of time before someone starts using the info for ill purpose … if they aren’t already.”

 

The Register says even though Facebook is trying to fix the problem, it doesn’t have any advice as to how to protect yourself in the meantime. 

View More
Comments
Newsy
www1