Researchers Found a Zero-Click Facebook Account Takeover

01 March 2024

The critical vulnerability in Facebook's password reset process involved a rate-limiting issue in a specific endpoint, which could be exploited to brute-force a nonce and gain access to a user's account.

>>More

We use cookies to ensure you get the best experience on our website. Cookie policy