Hacking Facebook Passwords like changing your own Password
http://kingofdkingz99.blogspot.com/2013/01/hacking-facebook-passwords-like.html
Sow Ching Shiong, an
independent vulnerability researcher has discovered a Password Reset
vulnerability in www.facebook.com, which can be exploited by an attacker
to bypass certain security restrictions.
In normal circumstances, an authenticated Facebook user is required to enter his/her current password on the change password page to prevent an unauthorized person from changing the password without the user's knowledge.
However, an attacker can change/reset a user's password without knowing the user's current password by accessing this URL directly: https://www.facebook.com/hacked.
After that, the page will be redirected to https://www.facebook.com/checkpoint/checkpointme?f=[userid]&r=web_hacked
Now, the attacker can click "Continue" to change/reset the user's password.
Proof of concept
Step 1: Logon to Facebook and access this URL directly: https://www.facebook.com/hacked. The page will be redirected to https://www.facebook.com/checkpoint/checkpointme?f=[userid]&r=web_hacked
Step 2: Click on "Continue" to proceed
Step 3: Enter "New Password" and "Confirm Password" to change/reset the password.
In normal circumstances, an authenticated Facebook user is required to enter his/her current password on the change password page to prevent an unauthorized person from changing the password without the user's knowledge.
However, an attacker can change/reset a user's password without knowing the user's current password by accessing this URL directly: https://www.facebook.com/hacked.
After that, the page will be redirected to https://www.facebook.com/checkpoint/checkpointme?f=[userid]&r=web_hacked
Now, the attacker can click "Continue" to change/reset the user's password.
Proof of concept
Step 1: Logon to Facebook and access this URL directly: https://www.facebook.com/hacked. The page will be redirected to https://www.facebook.com/checkpoint/checkpointme?f=[userid]&r=web_hacked
Step 2: Click on "Continue" to proceed
Step 3: Enter "New Password" and "Confirm Password" to change/reset the password.
The Vulnerability was very simple to execute, but now patched by Facebook Security Team.
hack facebook account with facebook phishing pages - www.richhacker.com
ReplyDeleteHello. Are you in need of a Hacker .I recommend (worldcyberhackers) on Gmail or whatsApp : +12678773020. I have used them and they are the best. They render services such as:
ReplyDelete-Facebook hack
-Gmail hack
-Twitter hack
-WhatsApp hack
-Mobile phone hack
-iPhone hack and recovery
-Database Hack
-Retrival of lost files
-Viber hack
-Instagram Hack
-Snapchat Hack
-University grades changing
-Bank account hack
-Bypassing of Icloud
-Verified Paypal account.