As we all are familiar with the popular social networking site Facebook, which is used by millions of people around the world every day. People share their pictures, send messages and share different things on their profile with their friends and families.
How to Hack Facebook? Is the highly searched expression on Google, we have discussed this before as well in our “Facebook Hacking Course”. Everyone is seeking to somehow take control to other’s social profile and their privacy by reading the chats and other stuffs.
The Researchers at Check Point Software Technologies have recently found vulnerability related to the Facebook chat that we have on our online account and mobile app as well. Researchers have stated that attackers now can modify the Facebook chat of the user. Not only can modify but also can send messages and easily can delete as well so that no one trace that what happened from his profile.
This recent vulnerability also allows an attacker to send malicious malware through chat without any trouble.
For modifying the chat, the main thing is to get the user chat ID. Which is given by the Facebook server to every user, and which is unique for all. To get the Facebook chat ID, all you required is the basic HTML knowledge:
1. Send legitimate message to someone. Example “Hi”
2. Right click into the chat and view Page Source and search for message “Hi”
3. Then search for the “message id” parameter from that block that contains the unique Id for the chat.
4. Once the Id is fetched then uses this Id to get access to the chat by using “Burp Suite” Toolkit.
Complete Video demonstration is given below:
This vulnerability can be used for many purposes. The Check Point team has already reported this vulnerability to the Facebook, and will be patched soon by the Facebook security team. So, users won’t have to worry about this vulnerability any more as Facebook is highly concerned and dedicated towards its user’s privacy and security.
Attackers are working hard on finding Facebook vulnerabilities, so we may encounter these types of vulnerabilities in future as well. The most appropriate way to protect Facebook chat is to adopt End-to-End encryption, so that an attacker won’t read the actual chat, if he somehow gets the chat.