Geek Dashboard Home
HomeNews

Bug in Facebook Messenger Allows Anyone to See Who You Are Chatting With

3 min read Leave a Comment

Facebook has not had the best of times lately in terms of security. It is known that a new bug is discovered inside any of Facebook products almost every week. This has become so frequent that the company has lost a majority of its users in the US due to privacy issues.

Recently, Facebook CEO Mark Zuckerburg said that his company is working on making the platform more secure. Amidst that, a new bug inside Facebook Messenger has been discovered which revealed private information of its users. The bug, discovered by a cyber-security researcher, let out information about the profiles which the users were chatting with on its platform.

Facebook Messenger’s latest bug reveals information of person’s messaging contacts

Facebook Messenger
Image Credits: Android Authority

The latest bug inside Facebook Messenger is found to be present in its web version. According to a security researcher named Ron Masas, this bug let websites gain access to users’ data which included information about who they have been messaging.

According to Facebook’s Messenger team, the bug has been fixed now. However, the company did not reveal information about users affected by this bug. Now, the security researcher who discovered this bug is working with a cyber-security company called Imperva.

Read Also3 Ways to Create Single Name Account on Facebook to Hide the Last Name

Security Researcher Masas says that the bug was first seen in November 2018. Since then, the bug has been present inside Facebook Messenger’s web version. Also, Masas has revealed the details regarding this bug found inside Facebook Messenger.

The security researcher says that he, along with his team, found out this bug via cross-site frame leakage. Commonly known as CSFL, an attacker performs this type of side-channel attack on the web browser of end users.

Also ReadHide Data Using Steganography Tools -The Art Of Privacy

With the CSFL attack on Facebook Messenger, attackers were able to extract information such as data from the user’s profile. Due to this bug, there was no threat to the user’s account as password and other information were not accessible.

Masas further added in his blog post that:

Browser-based side-channel attacks are still an overlooked subject. While big players like Facebook and Google are catching up, most of the industry is still unaware

Now, the timing of the discovery of this bug is very interesting due to the fact that Facebook CEO has been banking on privacy for his products. Earlier this week, Zuckerberg said that Facebook is working on becoming privacy-focused like WhatsApp. There is no word on this bug from Facebook Messenger team as of now.

Be the Change!

Spread the word and help us create better tech content

Facebook Twitter Reddit WhatsApp Pinterest
Avatar for Abhishek Jariwala

Abhishek Jariwala

Facebook

Abhishek has a deep love for gadgets and follows each and every new smartphone launch that takes place in the market. He can also be found reading books and watching Cricket or Formula 1 in his free time.

Read all 176 articles from Abhishek

Leave a Reply

The comments section is to assist our readers with any inquiries. Each comment undergoes rigorous moderation before it can be approved for publication.Your name and comment will be publicly visible. Your email address will not be published.Required fields are marked