222842 Resource 202615 202768 202768 1231208023093 1231555448732 Controlled Facebook Hacked Due to XSS Vulnerabilities Facebook contains highly critical XSS vulnerabilities for hackers to exploit, posing privacy risks to users <p><a href="http://www.xssed.com/news/80/New_highly_critical_Facebook_XSS_vulnerabilities_pose_serious_privacy_risks/"><img alt="Facebook Hacked with XSS Vulnerabilities" hspace="10" src="http://www.cenzic.com/images/blog/facebook.jpg" align="right" vspace="10" border="0" /></a>The XSSed site reported a series of highly critical XSS vulnerabilities on Facebook (<a title="Facebook XSS flaws reported on Dec 15, 2008" href="http://www.xssed.com/news/80/New_highly_critical_Facebook_XSS_vulnerabilities_pose_serious_privacy_risks/" target="_blank"><strong><u>December 15, 2008</u></strong></a> and again on <a title="Facebook XSS vulnerabilities reported on January 4, 2009" href="http://www.xssed.com/news/81/Facebooks_Reset_Password_page_suffers_major_XSS_flaw/" target="_blank"><strong><u>January 4, 2009</u></strong></a>) that hackers can exploit.&nbsp; Various Facebook functionalities affected include the&nbsp;new users registration page, iPhone login, reset password pages, and others.&nbsp; </p><p>Malicious people can exploit these XSS bugs to infect millions of <strong>Facebook members with malware, adware and spyware</strong>.</p><p><strong>So far, Facebook has not fixed these flaws</strong>, so be very careful when using your account by questioning suspicious requests and not accepting friend invites from people you don&rsquo;t know.&nbsp; </p><p>by<br /><strong>Erin Swanson<br /></strong><a href="mailto:Eswanson@cenzic.com"><strong><u>Eswanson@cenzic.com</u></strong></a></p> 9 application/xml false facebook hack New highly critical Facebook XSS vulnerabilities pose serious privacy risks XSSed Site finds numerous XSS vulnerabilities on Facebook http://www.xssed.com/news/80/New_highly_critical_Facebook_XSS_vulnerabilities_pose_serious_privacy_risks/ Facebook 'reset password' page suffers major XSS flaw XSSed Site finds numerous XSS vulnerabilities on Facebook http://www.xssed.com/news/81/Facebooks_Reset_Password_page_suffers_major_XSS_flaw/ Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB5; .NET CLR 1.1.4322; .NET CLR 2.0.50727) 127.0.0.1 127.0.0.1 eswanson 64.60.123.45 false true false false true 204329 false false true false false false true 223096 Resource 204329 173239 202768 1231375191290 1231434332492 Controlled Who Cares Who cares if your facebook account is hacked? So what if someones facebook account is hacked. By now they should know better than to put personal information on their facebook account. Rule of thumb, if you don't want your mom to know then don't put it on facebook. 10 application/xml false Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.0.5) Gecko/2008120122 Firefox/3.0.5 127.0.0.1 127.0.0.1 24.250.48.153 false true false false true 202615 blog blogsite/Cenzic/web