A Taiwan-based security researcher, known as “Orange Tsai,” who was awarded a $10,000 bug bounty in February published a report detailing the exploits that led to his discovery of illicit code on a Facebook server. A consultant at the security firm Devcore, Orange Tsai said he discovered malware that provided access to Facebook employee’s passwords, which had been used by a remote attacker to gain access to employee emails and shared files.
View full story
ORIGINAL SOURCE: SC Magazine