Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Facebook SDK flaw allows unauthorized access to Facebook accounts

Facebook SDK flaw allows unauthorized access to Facebook accounts

2014/07/01

Help Net Security - (International) MetaIntell researchers identified a vulnerability in the Facebook SDK for Android and iOS that could allow an attacker to compromise users' Facebook accounts due to insecure storage of the Facebook Access Token. The vulnerability is present in 31 of the top 100 Android apps and 71 of the top 100 iOS apps.

Source: http://www.net-security.org/secworld.php?id=17074

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:20:46