A British man has been rewarded £13,000 by Facebook after he discovered a bug which could have been exploited to illegally access users' accounts.
Security researcher Jack Whitton found a flaw in the website's text messaging process and the 22-year-old has now been inducted into the social network's 'responsible disclosure' hall of fame.
Rewards are offered to those who successfully report bugs, in a scheme referred to as 'bug bounties'.
On this occasion the problem, which has now been rectified, allowed Mr Whitton to spoof Facebook's text message verification system into sending a password reset code for an account that did not belong to him.
Using this, he could go to Facebook, reset a target user's password, and see their account.
Return to internet news headlines
View Internet News Archive