Sunday 1 January 2012

Facebook 'Page' hijacking.

It is quite easy to hack Facebook 'Page' due to a loop hole in the social network's settings. 

This can be especially dangerous for businesses as their Facebook page stands for their brand. 

According to Sophos, once the creator of the page appoints someone as an administrator to their Page, that person can then remove the admin privileges of the creator of the Page. 

Here, while the onus is on Facebook Page creators to be careful about who they grant admin access to, it is possible for newly appointed administrators to hijack the Page, removing the original creator's admin rights -- effectively taking permanent control of the Page. 

Facebook's own help pages state that "the original creator of the Page may never be removed by other Page admins", however it is possible. 

"There are two issues here. Even if a trusted friend or colleague is working as an administrator on a Facebook Page, it is possible that their account may be compromised, giving the bad guys a chance to hijack the Facebook Page you've created," said Graham Cluley, senior technology consultant at Sophos. "The other possibility is that the Page founder grants a stranger admin rights to the Page. 

While this might not sound like the best idea, there are several services, such as Fiverr, where you can find plenty of people offering to help you to maximise the success of your Facebook Page." 

"If you give a cut-price 'social media expert' admin rights to your Facebook Page, you really only have yourself to blame if you're ousted," continued Cluley. "However, the question is - why can't Facebook do what its help pages say it will do - either block attempts to remove the original admin, or send a request to the original admin asking if they agree to be removed from their administrator role. That would surely help prevent hijacks like this taking place."

Note: article from times of india


Post a Comment