Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Serious vulnerability helps hackers attack Facebook accounts without the victim's actions
The problem was discovered and patched on February 2, but was only announced now due to security regulations.
The vulnerability is related to the Facebook password reset process through the optional feature of sending authentication codes. This 6-digit code is sent to another device logged in or pre-registered by the user to authenticate the original user and is used to complete the password reset process on a new device.
According to Samip Aryal's findings, Facebook sends a fixed authentication code (does not change the number sequence), is valid within 2 hours and has no security measures.
This means that crooks can enter the wrong activation code countless times within 2 hours of sending the code without encountering any preventive measures from Facebook's system. Normally, the security system will suspend login rights if the wrong code or password is entered more than the specified number of times.
Hackers can use 2 hours to steal user accounts.
This is a 0-click attack, hackers can steal the victim's account without any action from them.
When this vulnerability is exploited, Facebook will send a password recovery notification to the victim. Therefore, if you receive this message, it is likely that your account is being attacked or hijacked.
Isabella HumphreyYou should read it
- What to do when forgetting your Facebook password?
- Change your Facebook password on your phone, how to change mk fb
- Facebook lock acc, change password ... just follow it, don't worry
- How to Get Someone Else's Facebook Password
- What to do when losing your Facebook password?
- Facebook voices a batch of password changes
- How to retrieve a Facebook password when it is forgotten
- 4 ways to hack Facebook you should know to protect your Facebook account
May be interested
- Facebook was attacked, more than 50 million user accounts are at risk of being leaked
more than 50 million facebook user accounts are affected by a recent cyber attack. this is a new announcement released by the world's largest social network. - A series of famous accounts were hacked, TikTok issued an urgent announcementhackers took advantage of an undisclosed security vulnerability on the short video platform tiktok to attack the accounts of celebrities and big brands such as cnn, sony and paris hilton.
- It turns out this is how hackers attack your computer through the main screenthe video clearly shows how he entered the user's computer through the main screen, creating a vulnerability on the computer to steal personal information. in this way, the hacker can even change the amount of money in the user's bank account.
- Ze-ro day preventionze-ro day is the hackers take advantage of security holes (bm) not yet overcome in the system to attack causing terrible consequences for computers (mt) and network systems. ze-ro day is also a constant attack to make victims
- The new vulnerability on Intel allows hackers to take control of your computer within 30 secondswhile intel's meltdown and specter vulnerabilities have not been completely overcome, the world faces a new security vulnerability that allows hackers to take complete control of the user's device and attack time within 30 seconds.
- How do Sony customers protect themselves?the hackers' attack on sony's playstation network (psn) and sony online entertainment (soe) has affected a total of over 100 million accounts.
- The new zero-day vulnerability on Windows 10 helps hackers take control of the computerthis is a serious security vulnerability that could allow hackers to attack and gain control of computer devices.
- Facebook Messenger sticks to a vulnerability that exposes users' contactsimperva security team recently announced a security vulnerability on facebook messenger that can be exploited by hackers to view the victim's facebook account list via web browser and iframe (one card in web programming).
- Facebook supports unlocking accounts with facial recognitionas we all know, social networking sites like facebook, twitter, instagram, ... are where we can connect with people all over the world. however, hackers always use different techniques to hack our accounts. so how to protect your account best to avoid hacker intrusions or regain accounts in case of forgetting passwords?
- Detecting a Google Drive vulnerability could allow hackers to trick users into installing malwarean unresolved security weakness in google drive can be exploited by software attackers to distribute malicious files.
Attack the network
- How are scammers using your face to commit fraud?
- The new attack technique uses a wireless charger to issue voice commands and heat up the device
- New malware discovered that can bypass Windows SmartScreen and steal user data
- What is Quishing? How to prevent a Quishing attack?
- How to Secure GraphQL API: Implement User Authentication in Express.js Using JWT
- How to Stay Away from Pornography
How are scammers using your face to commit fraud?
The new attack technique uses a wireless charger to issue voice commands and heat up the device
New malware discovered that can bypass Windows SmartScreen and steal user data
What is Quishing? How to prevent a Quishing attack?
How to Secure GraphQL API: Implement User Authentication in Express.js Using JWT
How to Stay Away from Pornography