Take a walk through most workplaces and you will surely notice someone browsing a social networking site. No wonder that website popularity services like Alexa rate Facebook the second most visited website after Google and before Youtube!  We trust these websites to reflect the public image that we want to portray and sometimes even trust with secrets. A single cross-site scripting vulnerability allows attackers to do anything (that the victim may do) on behalf of the victim. In this article we will look at how Facebook accounts could be compromised through such a simple, yet effective vulnerability.

HTTP Only does not protect your site (or Facebook) from XSS exploitation

As Facebook has emerged as the most popular Social Networking site (with a user base of 800 Million active users) it has also gained attention of hackers and spammers. As in the case of Windows, the more popular it is, more are the chances of it getting attacked. The reason that both Windows and Facebook are easy target is same: it has large number of population and most of them are common users with limited or no knowledge of “security”. It is an open secret that people are the weakest link when it comes to security. Keeping this in mind, I would like to request readers not to be the weakest link and to follow these best practices to avoid being hacked:

With the advancement of technology advanced are the dangers. On an unsecure wi-fi connection hacking facebook is child’s play. You might have heard of “Firesheep” add on of Firefox which enables to login in to others’ opened facebook account on the same network. Apart from that, packet sniffers can also be used to steal your password on the fly. Man in the middle attacks are also very popular in the same sense.

Facebook Timeline brings great new set of features to give totally a new facebook experience. The recent Facebook Christmas Theme spam gone viral couple of days ago and many profile got infected. It is important to protect your facebook timeline against such spam attacks, as you will stand as the origin to spread the same spam message to your friends profile. You should do little modification of privacy settings to prevent your friends or friends of friends posting on your timeline.

 

Hello friends today i will explain you how to hack the Facebook password or accounts remotely using keylogger. Its a 100% working hack and you can easily hack anyone's Facebook account or password using this hack. In this tutorial i will explain you how to hack Facebook and other passwords of any user using 100% FUD keylogger. The keylogger in this tutorial we will discuss is L33ts keylogger adn its 100% FUD(fully undetectable).

Hacking Facebook account is very easy and just requires not more than 10 minutes of work. Don't worry i will also tell you how to protect your facebook account or passwords from such hacks and hackers. But for this you must know how hackers hack your facebook account. So first i teach you how to hack facebook account remotely and then i will tell how to protect yourself from this.

NOTE: This tutorial is for Educational purposes only i.e. to make you aware how hackers hack your Facebook accounts. Please don't misuse it. I am not responsible for any damage caused by you.

 

Facebook claims that it has 400 million users. But are they well-protected from prying eyes, scammers, and unwanted marketers? 

Not according to Joan Goodchild, senior editor of CSO (Chief Security Officer) Online.

She says your privacy may be at far greater risk of being violated than you know, when you log onto the social-networking site, due to security gaffes or marketing efforts by the company.

Facebook came under fire this past week, when 15 privacy and consumer protection organizations filed a complaint with the Federal Trade Commission, charging that the site, among other things, manipulates privacy settings to make users' personal information available for commercial use. Also, some Facebook users found their private chats accessible to everyone on their contact list--a major security breach that's left a lot of people wondering just how secure the site is.

In two words, asserts Goodchild: not very.