1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Khalil Shreateh facebook bounty has reach the goal $10,000 donation

Discussion in 'BlackHat Lounge' started by ArkmayL7, Aug 21, 2013.

  1. ArkmayL7

    ArkmayL7 Junior Member

    Joined:
    Jun 17, 2011
    Messages:
    156
    Likes Received:
    59
    Khalil Shreateh who has found the vulnerability and post it on the Mark Zuck wall has reach the goal of $10,000 donation. He's not awarded for his work because facebook claim he is cross the line not to testing the bug on live person account.

    Donate here : http://www.gofundme.com/3znhjs
     
  2. Rotem Guez

    Rotem Guez Power Member

    Joined:
    Jul 15, 2010
    Messages:
    726
    Likes Received:
    1,260
    Location:
    London
    Home Page:
    I pay with likes. Is it ok?
     
  3. SeoWrecker

    SeoWrecker Jr. VIP Jr. VIP Premium Member

    Joined:
    Jul 16, 2012
    Messages:
    1,596
    Likes Received:
    1,462
    Location:
    Doesn't matter
    zuckerberg dint pay him because what the hacker posted on his wall was

    "its zuck's birthday , buy him some clothes"
    :p

    apparently he got offended and refused him to pay saying it was not even a bug
     
  4. Chris22

    Chris22 Regular Member

    Joined:
    Sep 29, 2010
    Messages:
    400
    Likes Received:
    1,059
    I don't think he deserves recognition nor the money to be honest, although, Facebook are partly at fault here.

    The correct procedure is to report the steps you take to reproduce the exploit/bug, so it's easy for the engineers to identify and fix. This kid sent in a video showing that he could but not how it was done. It wouldn't surprise me if a team of engineers were up all night in panic stations after seeing a video like that. I couldn't imagine the stress of being responsible for a platform that size and trying to fix a major security hole based on barely any information. His whole attitude towards it reeks of 'look at me i found a bug, now give me money'.

    Facebook did however tell him that it was not a bug, this is definitely a mistake on their part, but the guy should have followed common sense and standard procedure.
     
  5. SeoWrecker

    SeoWrecker Jr. VIP Jr. VIP Premium Member

    Joined:
    Jul 16, 2012
    Messages:
    1,596
    Likes Received:
    1,462
    Location:
    Doesn't matter

    It seems he had communication problem with the facebook team he could not explain them how the bug is to be fixed but clearly he deserves some credit here he could have sold the information to various blogs and could earn 10 times more but he decided to report them to facebook
     
  6. leetchart

    leetchart Regular Member

    Joined:
    Aug 15, 2012
    Messages:
    453
    Likes Received:
    108
    The FB security is like a shit. All here have seen "Spam behind facebook". It started from 2009 and it's still working.
    So what the f**k they are doing?

    They can't control this if people can't control their PC!
     
  7. Junkfood00

    Junkfood00 Elite Member

    Joined:
    Sep 13, 2011
    Messages:
    1,949
    Likes Received:
    1,336
    Anyone noticed this? There is literally no shares on Google+ of the funding/donation page, only fb shares and tweets mostly.

    He actually tried to alert them about the bug or security hole but they told him it's not a bug, hence the course of posting on Zuckerberg's profile.
     
  8. ArkmayL7

    ArkmayL7 Junior Member

    Joined:
    Jun 17, 2011
    Messages:
    156
    Likes Received:
    59
    facebook receive too many bug report daily.. thats why they couldnt identified which is the real legit bug