Skip to main content

Facebook pays $33k to security researcher for finding, reporting huge bug in social network

facebook pays 33500 to hacker for finding security bug sign login
Image used with permission by copyright holder

Facebook just made the company’s largest payout ever to a security researcher who discovered a bug so large he could’ve hijacked an entire network server. 

According to ZDNet, Facebook paid Brazilian computer engineer Reginaldo Silva $33,500 for reporting a major bug to Facebook. Silva has been testing the type of bug he eventually found on Facebook since 2012, earning a much-smaller $500 bounty from Google after he found a related security issue by running a code on one of their servers. Silva detailed how he discovered the Google bug and moved on to discover the much-larger Facebook bug in a blog post. Although he’d been testing this particular type of bug for years, he’d only discovered how it applied to Facebook and worked on the problem for two days before he hacked the system and reported the problem. 

Facebook addressed the bug and the bounty they paid Silva yesterday with a post by the Facebook Bug Bounty team, which awards money to white-hat hackers who tell the social network about vulnerabilities they’ve discovered. 

Many Facebook users commented on the post, expressing disappointment at Facebook’s payment rate, which they felt to be too low. But hopefully the publicity will help Silva get hired at another large tech company (or Facebook itself). 

And Silva isn’t giving up his quest to rid Facebook of bugs. “This is not my first security bug submitted to them, and it certainly won’t be the last. My goal is to keep finding high-impact security flaws,” he told Digital Trends via email.

Editors' Recommendations

Topics
Kate Knibbs
Former Digital Trends Contributor
Kate Knibbs is a writer from Chicago. She is very happy that her borderline-unhealthy Internet habits are rewarded with a…
X rival Threads could be about to get millions of more users
Instagram Threads app.

Threads -- Meta’s rival to X, formerly Twitter -- has just launched in the European Union (EU), a market with nearly half a billion people.

The app launched in the U.S. to much fanfare in July, with Meta hoping to attract X users disillusioned with the turbulence on the platform since Elon Musk acquired it for $44 billion 14 months ago.

Read more
X (formerly Twitter) returns after global outage
A white X on a black background, which could be Twitter's new logo.

X, formerly known as Twitter, went down for about 90 minutes for users worldwide early on Thursday ET.

Anyone opening the social media app across all platforms was met with a blank timeline. On desktop, users saw a message that simply read, "Welcome to X," while on mobile the app showed suggestions for accounts to follow.

Read more
How to create multiple profiles on a Facebook account
A series of social media app icons on a colorful smartphone screen.

Facebook (and, by extension, Meta) are particular in the way that they allow users to create accounts and interact with their platform. Being the opposite of the typical anonymous service, Facebook sticks to the rule of one account per one person. However, Facebook allows its users to create multiple profiles that are all linked to one main Facebook account.

In much the same way as Japanese philosophy tells us we have three faces — one to show the world, one to show family, and one to show no one but ourselves — these profiles allow us to put a different 'face' out to different aspects or hobbies. One profile can keep tabs on your friends, while another goes hardcore into networking and selling tech on Facebook Marketplace.

Read more