One of the problems business owners face when providing security for their own companies is that they fail to think about the whole picture, and this is something that social networking giant Facebook recently learned.
When it comes to providing security for its billion-plus users, Facebook generally gets high marks. Security cannot be thought of as a guarantee for users of a public and free social network; the actions of Facebook members on the network are assumed to be taken at their own risk. Nonetheless, Facebook actually makes very good efforts to protect the safety of their members.
A Security Concern for Facebook
Facebook’s corporate campus is located more than 400 miles from Apple Valley and Victorville; this is where the company’s corporate computers and servers that house internal data such as employee record, access credentials, sensitive files, investor information, etc.
The security researcher who broke into Facebook was attracted by the social network’s bug bounty program, which offers rewards to individuals who are able to find flaws in the system. In this case, the breach resulted in the discovery of seven flaws, including vulnerability to SQL injection and remote code execution, two common and dangerous cyber attacks that business owners fear.
The white hat hacker gained unauthorized entry through a backdoor that seemed to have been left open by mistake. An unofficial statement by a Facebook IT employee explained that the company was aware of the backdoor, which was allegedly left open for another security researcher to run a surveillance program.