ADVERTISEMENT
site_logo
  • Campus
  • Happening
  • Opinion
  • People
  • News
  • #BeInspired
  • Careers
  • 40 under 40
  • Exams
  • What The FAQ
  • Videos
    • Straight Up
    • Odisha Literary Festival 2020
    • Campus Convo
    • Careers After Corona
    • Express Expressions
    • Q&A With Prabhu Chawla
    • ThinkEdu Awards 2020
  • edex_worksEDEXWORKS
ADVERTISEMENT
Instagram

Published: 26th August 2019     

Remember the Chennai techie who found flaw in Instagram? He does it again, wins $10,000 

The new vulnerability that Muthiyah spotted was similar to the one he reported in July and allowed anyone to hack Instagram accounts without consent permission

Edex Live
Edex Live
f_icon t_icon i_icon l_icon koo_icon whatsapp_icon email_icon

Share Via Email

Laxman_Muthiyah

Laxman Muthiyah

Barely a month after winning $30,000 from Facebook for spotting a flaw in Instagram, Chennai-based security researcher Laxman Muthiyah on Monday said he again discovered a new account takeover vulnerability on the photo and video-sharing app. This time he has won $10,000 as part of the social network's bug bounty programme.


The new vulnerability that Muthiyah spotted was similar to the one he reported in July and allowed anyone to hack Instagram accounts without consent permission. Facebook has now fixed the vulnerability that Muthiyah reported. "Facebook and Instagram security team fixed the issue and rewarded me $10000 as a part of their bounty programme," Muthiyah said in a blog post.


Muthiyah found that the same device ID - the unique identifier used by Instagram server to validate password reset codes - can be used to request multiple pass codes of different users. He showed that this vulnerability can be exploited to hack Instagram accounts. "You identified insufficient protections on a recovery endpoint, allowing an attacker to generate numerous valid nonces to ten attempt recovery," Facebook said in a letter to Muthiyah.

telegram
TAGS
Instagram Facebook

O
P
E
N

ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT
telegram
ADVERTISEMENT
Write to us!

If you have campus news, views, works of art, photos or just want to reach out to us, just drop us a line.

newsletter_icon
Mailbox
edexlive@gmail.com
fb_icon
Facebook
twitter_icon
Twitter
insta_icon
Instagram
ADVERTISEMENT
Facebook
ADVERTISEMENT
Tweets by Xpress_edex
ADVERTISEMENT
ADVERTISEMENT

FOLLOW US

Copyright - edexlive.com 2021

The New Indian Express | Dinamani | Kannada Prabha | Samakalika Malayalam | Indulgexpress | Cinema Express | Event Xpress

Contact Us | About Us | Privacy Policy | Terms of Use | Advertise With Us

Home | Live Now | Live Story | Campus Trip | Coach Calling | Live Take