View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
April 26, 2016updated 05 Sep 2016 10:47am

Facebook hacker finds evidence of previous intruder

News: Devcore security researcher Orange Tsai won a $10,000 cash reward from Facebook for identifying the vulnerable server.

By CBR Staff Writer

A hacker looking for a way to break into Facebook’s internal servers has found evidence of another intruder. The evidence consists of files found on an abandoned Facebook server, thought to be left there by another hacker.

In a blog post, Devcore security researcher Orange Tsai described the details on how he hacked the Facebook server and found someone’s backdoor script.

Tsai said: "While collecting vulnerability details and evidences for reporting to Facebook, I found some strange things on web log.

"The hacker created a proxy on the credential page to log the credentials of Facebook employees. These logged passwords were stored under web directory for the hacker to use WGET every once in a while."

Tsai discovered that there were about 300 logged credentials dated between February 1 to 7.

The researcher then alerted Facebook about the hack on 5 February. The social networking giant launched an internal investigation, which was completed on 20 April, allowing Devcore to publish the details of the hack.

In a statement on the Hacker News site, Facebook said it was pleased Tsai reported his findings.

Content from our partners
Powering AI’s potential: turning promise into reality
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline

"After incident response, we determined that the activity Orange detected was in fact from another researcher who participates in our bounty program. Neither of them were able to compromise other parts of our infra-structure."

Tsai won a $10,000 bug bounty from Facebook for identifying the vulnerable server.

In September 2013, an Indian electronics and communications engineer discovered a bug that can exploit the mobile version of Facebook’s support dashboard.

Facebook has, however, fixed the bug which allowed hackers to delete any image stored on the social networking website without the user’s knowledge.

In June 2014, security researchers discovered a Bitcoin mining Trojan that spreads through Facebook to infect computers to use the computing resources for mining cryptocurrency.

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how Progressive Media Investments may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.