Security News > 2020 > March > Facebook Awards $55,000 for Flaw That Could Lead to Account Hijacking
2020-03-10 19:41
A researcher has earned $55,000 from Facebook for reporting a serious vulnerability that could have been exploited by hackers to steal access tokens and hijack accounts.
India-based researcher Amol Baikar discovered in December that the "Login with Facebook" feature, which allows users to log in to other websites with their Facebook account, was affected by a vulnerability.
Facebook was informed about the vulnerability on December 16 and a patch was released within a week.
"We've fixed the issue and haven't seen any evidence of abuse," Facebook told SecurityWeek.
Facebook last year paid out a total of roughly $2.2 million through its bug bounty program, reaching nearly $10 million since the launch of its program in 2011.