Posts Tagged ‘Facebook Camera’

FacebookThe flaw allows attackers to intercept user credentials Facebook.

Facebook has released a new version of the Camera application for iOS to fix a vulnerability that could allow an attacker to break into user accounts, social networking, running-man attack in the middle.

Egyptian IT-specialist and CEO of Attack-Secure Mohamed Ramadan found the vulnerability and reported her to the administration of Facebook. According to the Ramadan, if the attacker was connected to the internet via the same wireless network as the victim, he could gain access to the transmitted traffic and intercept user credentials.

“The problem was that the application accepts SSL-certificates from any source, even from malware, and it allows an attacker to attack the man-on-the-middle for those users who use the app Camera for iPhone”, – explained Ramadan.

For vulnerability detection to the expert paid $3 thousand.

All users of the application for Facebook – Camera – need to upgrade to the latest version in order to protect themselves from identity theft.

FacebookEgyptian expert in the field of information security, Mohamed Ramadan discovered a vulnerability in Facebook Camera app for iOS.

Application accepts any SSL certificate, creating a base for an attack of the ‘man in the middle.’

Versions prior to 1.1.2 (previously released 21/12/2012) provide unauthorized access to some data on your phone when connected via Wi-Fi.
In particular, an attacker can intercept transmitted e-mail address and password you used to log in to Facebook. So iPhone users run the risk of losing control of his account in Facebook.

Facebook camera app for iOS allows an attacker to find e-mail and password for the account of the victim (more…)