FB bug fetches $5,000 to Hyderabad student
A city student, Aellaboina Tarun, won 5,000 USD for discovering a bug in popular social media platform Facebook last month. The bug reported by Tarun, a third year engineering student in Computer Science at CMR College of Engineering and Technology, enables URL redirection and causes severe cache issues.
“I was attracted by security modules and was in search of vulnerabilities when I found a URL redirection which lands the user on unexpected webpage rather than the main Facebook webpage. Also while studying its source code I found a serious cache issue due to which the user’s access to the social media platform can be interrupted,” Tarun explained.
The discovery was a result of several hours of intensive study after which Tarun sent a detailed report along with proof of concept (POC) to Facebook. Acknowledging his contribution, his name, along with the college name, was listed in Facebook’s ‘Hall of Fame’, also known as ‘Whitehat’ list which can be seen at ‘www.facebook.com/whitehatlist/thanks’.
The CMR College of Engineering & Technology is also the first college in the world to get listed in the ‘Facebook Whitehat’ list. Facebook initiated a programme called ‘Bug Bounty Program’ to encourage experts to detect and report security threats and vulnerabilities of the platform.