This Hacker Can Hack Any Facebook Account !
Here is a big issue arises on the internet to hack any
Facebook account. That is really hard to find a way to hack someone’s Facebook
account by which hacker can see all conversations, post anything as well as any
payment card details and hacker have the power to do anything with that
account.
But
recently here is a ‘simple vulnerability’ found on Facebook that will give us
the power to access any Facebook account of any user even it could be done
without any user interaction. Which you can hack any Facebook account by
setting a new password and can see all messages, personal photos as well as
his/her details of under credit/debit cards stored etc.
This vulnerability is
found by bug hunter Anand Prakash from India who has discovered a Password
Reset Vulnerability in Facebook. Facebook acknowledged this issue and fixed it
and also rewarded by $15,000 USD considering
the impact of this vulnerability.
HOW IT
WORKS :
This is a simple but also critical vulnerability that will give an endless
opportunities to reset any account’s password.
As you know that whenever we forget our password of our Facebook account
then we have the option to reset the password by entering our phone number or
email address on Facebook. And then Facebook send a 6 digit code on our phone
number or email address by which we can set our new password.
And for ensuring the genuinely of the user, Facebook gave the chance to the
account holder for trying a dozen codes before the account confirmation code is
blocked due to the blocking process of brute force that has only limited chance
to attempts the code.
The Security researcher describes in his blog post that, the
Facebook had not implemented the rate-limiting in its process of password
reset on the beta sites such as beta.facebook.com & mbasic.beta.facebook.com.
He tried to brute force the 6-digit code on the beta pages of Facebook.
There is a window of ‘Forgot Password’ and found that there is
no limitation for attempting that number of codes on that beta pages.
POC
Video:
Here’s
a proof-of-concept(POC) video demonstration by Anand Prakash which shows that
how the attack works.
VULNERABLE
REQUEST:
POST /recover/as/code/ HTTP/1.1
Host: beta.facebook.com
lsd=AVoywo13&n=XXXXX
Brute
forcing the "n" successfully allowed me to set a new password for any
Facebook user.
Anand
discovered this simple as well as critical vulnerability in February and then
he reported it to Facebook on February 22. Then the social network giant
immediately fixed this issue and had rewarded him by $15,000 USD for
considering the rigorousness and impact of the vulnerability.
This professional hacker is absolutely reliable and I strongly recommend him for any type of hack you require. I know this because I have hired him severally for various hacks and he has never disappointed me nor any of my friends who have hired him too, he can help you with any of the following hacks:
ReplyDelete-Phone hacks (remotely)
-Credit repair
-Bitcoin recovery (any cryptocurrency)
-Make money from home (USA only)
-Social media hacks
-Website hacks
-Erase criminal records (USA & Canada only)
-Grade change
-funds recovery
Email: onlineghosthacker247@ gmail .com
Do you need to increase your credit score?
ReplyDeleteDo you intend to upgrade your school grade?
Do you want to hack your cheating spouse Email, whatsapp, Facebook, instagram or any social network?
Do you need any information concerning any database.
Do you need to retrieve deleted files?
Do you need to clear your criminal records or DMV?
Do you want to remove any site or link from any blog?
you should contact this hacker, he is reliable and good at the hack jobs..
contact : cybergoldenhacker at gmail dot com