• No events
AEC v1.0.4

Cyber Security Info

You can abuse Facebbok to DoS any website

April 28, 2014

Share Button

Author of the blog has discovered a vulnerability of the Notes function of Facebook. It allows inserting any image in the note as a html link. Although the image gets downloaded to the Facebook database only once, adding different parameters to the link can cause repeated downloads. This way, the attacker can abuse enormous Facebook resources to take down any small company’s website. Facebook does not believe this is a serious issue and does not plan to patch the vulnerability.

Share Button