Facebook’s white hat program dished out another reward, as U.K.-based application security engineer Jack Whitton received $20,000 for alerting the social network about a bug that allowed him to take over other users’ Facebook accounts via text message.
The good news: The Facebook Security team snuffed out a bug that exposed some 6 million Facebook users’ email addresses and phone numbers. The bad news: The bug was active for about one year before being discovered and dealt with.
The Chat Heads feature of Facebook’s Home overlay for Android was added to the Facebook Messenger application for that platform, and the social network also added permissions for Home to its flagship Android app.
Facebook is working to correct a pair of bugs, with one affecting users’ ability to display events they are attending on their Timelines, and the other preventing them from viewing their search histories on the social network. UPDATE: The bug affecting search histories has been corrected, according to Facebook.
Websites with Facebook’s like button and comments plugin, fear not: Your popularity is not plummeting. Facebook is in the process of fixing a bug that reset like counts and made comment threads disappear on those pages.
Facebook averted another close call on the security front, as the Facebook Security team was able to close a loophole, reported by developer Nir Goldshlager, which would have enabled hackers to gain full control over any Facebook accounts.
Users of Facebook’s Camera iOS application might want to make sure they have updated to version 1.1.2, as Facebook confirmed a bug in older versions that created a security loophole.