Back in September, a security researcher wrote about discovering a flaw in Facebook’s messaging system. In order to bypass the filter that would prevent users from attaching executable files in attachments: all you had to do was rename the executable file with an additional “space” after the .exe. Facebook will then gladly accept the file and send it off to the recipient just like that.
The Facebook team was informed about the bug, which they then denied as being an issue – so they left it unfixed. It’s been about a month the bug was reported, and now we’re happy to report that Facebook has quietly fixed the problem. While Facebook didn’t acknowledge it, users no longer can attach executable files to their messages using the aforementioned method.
While the issue was reported on a number of tech blogs online and Facebook took its sweet time to fix it, I guess we’re pretty fortunate that it wasn’t majorly exploited by hackers or people who wanted to spread malware around. Find out more.
- 2014-04-17: Facebook Nearby Friends Feature Introduced
- 2014-04-16: Facebook Acquisition Will Make Sense In A Year, According To Oculus VR's Founder
- 2014-04-14: Google Picks Up Titan Aerospace Before Facebook Can
- 2014-04-14: Facebook Reportedly Working On An E-Money Service
- 2014-04-10: Facebook Makes Improvements To Reduce News Feed Spam
- 2013-06-17: Facebook, Apple and Microsoft Give New Information On Government Data Requests
- 2013-05-02: Facebook Rolls Out 'Trusted Contacts' To Give Friends Power Over Your Account
- 2012-11-02: Facebook gets serious in educating its new users
- 2012-10-26: 1M Facebook User Emails Allegedly Purchased For... $5
- 2012-08-09: Facebook announces dedicated email address to report phishing scams