Facebook has rewarded $30,000 (around Rs 20,60,000) as part of the Bounty program to Chennai-based security researcher Laxman Muthiah for finding bugs on Instagram. Muthiah explained that because of this Instagram bug, he could hack any account without a consent permit. Muthiah found that it's quite easy to hack any Instagram account with password reset, recovery code request.
"I told Facebook's security team about this bug, but initially they were not willing to accept it because of some flaws in my report," Muthiah wrote in his blog post this week. Then, after exchanging some emails, I gave them a concept video. Through this video, I was able to explain them correctly about this lack of Instagram and agreed to accept it. The team from Facebook and Instagram worked out it and I got a $30,000 reward under the Bounty program," he said.
For your information, Paul Ducklin, senior technology scientist at Sophos, a well-known cybersecurity company, said he had already warned about the bug and that the bug that Muthiah had discovered has now been fixed. At the same time, he insisted that users should be aware of the fact that the account is hacked. How to recover the account and how to process it.
Earlier, Muthiah had detected Facebook's data deleting and data disclosure bugs. The data deletion bug deleted all photos without knowing the user's password. Another bug told users to download other apps on the phone. As soon as these apps were installed, the bug would go to the user's account and access all Facebook photos. Ducklin said Muthiah had also discovered the two bugs under the Facebook Bounty program and responsibly reported it to Facebook. This bug was fixed by Facebook before it reached global users, and no other user detected the bug.
Also read:
WhatsApp: follow these steps to find out whom you’re talking to the most
Xiaomi India's MD Manu Jain explains Redmi K20 series 'high' price in an open letter