Palestinian information system expert Khalil Shreateh discovered a bug that allowed Facebook users to post on the Timelines of other Facebook users, even when they were not connected as friends, but when he submitted it to the social network’s white hat program, Facebook Security responded that it was not a bug. So Shreateh went straight to the top, exploiting the bug to post on the Timeline of none other than Facebook Co-Founder and CEO Mark Zuckerberg.
Facebook Software Engineer Matt Jones responded to a report on Hacker News about a loophole in emails sent out by the social network that could have allowed anyone who found the content of those emails via Google searches to access users’ accounts without entering passwords.
Facebook giveth, and Facebook taketh away: Just one week after pages’ like totals began dropping due to the social network’s purge of fake profiles and likes, reports surfaced of like totals increasing due to links sent in private messages, and not to users actually liking pages. Facebook responded that it was working to fix a bug in its social plugins, and that the totals being impacted were actually on counters that measure likes and shares.