ALL >> Computers >> View Article
Facebook Alters Bug Disclosure Policy To Encourage Information Security Experts
Security has become the buzzword in the IT industry. Rising number of security breaches has been a cause for concern for organizations, software developers, websites and vendors of security products. While hackers constantly endeavor to exploit vulnerabilities, software developers have to invest considerable resources on other factors such as product innovation, research and marketing along with security. Off late, information security researchers have been discovering bugs in software products, web applications and security products to aid developers in coming up with appropriate security patches. Recently, popular social networking site, Facebook modified its bug disclosure policy to encourage information security researchers to discover vulnerabilities. The wording of the earlier policy gave an impression that information provided by security professionals may be used to take action against them. The wrong wording of the policy scared many researchers from informing vulnerabilities to Facebook. Some of the prominent vendors such as Google and Mozilla ...
... offer financial rewards to security professionals for revealing high and critical vulnerabilities.
Usually, organizations use the services of certified ethical hackers to reveal the vulnerabilities. The new disclosure policy clarifies that no legal action will be initiated against researchers for sharing vulnerabilities, if the action was done in good faith and Facebook receives reasonable time to respond. The clarification will inspire security professionals to help Facebook pre-empt hackers in discovering vulnerabilities and initiating corrective action. The popularity of Facebook has made it an easy target for hackers to uncover loads of personal information to thousands of individuals. Social networking sites such as Facebook and Twitter witness several instances of fake accounts from offenders in the name of celebrities and top officials. Therefore, security is one of the prime concerns for these sites.
Hackers can misuse the vulnerabilities on websites to inject malware, redirect to fake websites, create fake accounts, reveal username and passwords, and gain unauthorized access to associated databases. Organizations must encourage their employees to enroll in IT security courses to keep themselves updated on the latest tools and techniques. Internet users must vary of fake e-mails purportedly coming from a legitimate networking site with invitation from unknown members. The links in the e-mail may lead users to fake websites, where there information may be compromised.
Add Comment
Computers Articles
1. Exploring How Ai In The Cloud Can Transform Your BusinessAuthor: TechDogs
2. The Power Of Cloud And Ai: A New Era Of Collaboration
Author: TechDogs
3. Get Business Insights Using Expedia & Booking. Com Review Data Scraping
Author: DataZivot
4. Top 10 Reasons A Strong Communication Strategy Drives Prm Program Success
Author: Archi
5. Achieve Scalable Web Scraping With Aws Lambda
Author: Devil Brown
6. Overcoming Common Challenges In Iso 27001 Implementation
Author: Jenna Miller
7. Basic Computer Course: Your Gateway To Skill Development | The Institute Of Professional Accountants
Author: Tipa Institute
8. Top 7 Advantages Of React Js
Author: Bella Stone
9. Top 7 App Marketing Tools For Mobile Success
Author: Bella Stone
10. Revolutionizing Education Management With Samphire It Solution Pvt Ltd’s Erp Software
Author: CONTENT EDITOR FOR SAMPHIRE IT SOLUTIONS PVT LTD
11. Top 10 Healthcare Technology Trends
Author: goodcoders
12. "building Tomorrow’s Factories: The Role Of Automation & Robotics In Modern Manufacturing"
Author: andrew smith
13. The Ultimate Guide To The Best Ecommerce Plugin For Wordpress
Author: Rocket Press
14. Xsosys Erp: A Scalable Solution For Businesses In Any Industry
Author: Xsosys Technology(S) Pte. Ltd.
15. Rental Management Software: A Complete Solution For Car, Property, And Coworking Space
Author: RentAAA