According to Zack Whittaker a writer from ZDNet and CNET Facebook had a flaw that could have put over 1 million Facebook accounts at risk of unauthorized access. This flaw would have allowed unauthorized users to login to others Facebook account without the use of a password. The flaw was centered around a user’s e-mail address. Facebook would e-mail links to users that when clicked would automatically give them access to that Facebook account without the need for a password. There was also a flaw that allowed you to automatically access your Facebook account without a password if you were logged in to g-mail. This can be a big issue and lead to many problems if your e-mail account was compromised in anyway. If your e-mail account was compromised someone would automatically be able to access your Facebook account and any other accounts that are linked with goggle via your g-mail. Many of my android apps are also automatically connected and liked with my g-mail as well. I think this is a big issue because there are a lot of applications that are linked with Google that can be assessed with a single login. Here are a few steps that should be taken each time you access a site or application that requires a login:
1. Always log out of a system or website when you are done.
2. If you are accessing a site from a public computer make sure you delete all cookies and browsing history.
3. Never click no or never when asked if you want the browser to save or store your login information.
4. Change all your passwords to social media, e-mail, banks, and e-commerce websites often.
5. Use different hard to guess passwords for each account.
6. Always make sure the “remember me” checkbox is unchecked.
Article can be found at: http://news.cnet.com/8301-1009_3-57544933-83/facebook-password-bypass-flaw-fixed/
No comments:
Post a Comment