In order to prove that the security flaw exist in Social media giant Facebook, a bug or security researcher , Khalil Shreateh proves his point and posted on Zuckerberg’s Facebook wall about the bug. The Security flaw he reported was that Facebook allow people to post on someone’s wall without being in their friends’ list !!
Khalil Shreateh confirmed that he initially tried to contact Facebook security team after proving the bug he found was true by posting on the wall of a Facebook friend of Mark Zuckerberg’s. But he was not taken seriously about the flaw by the Facebook team. So, a Security researcher went a step ahead to prove his point and he used the bug and posted on Zuckerberg’s wall this message : “First sorry for breaking your privacy and post to your wall, i has no other choice to make after all the reports I sent to Facebook team.” and explained the bug which forces Facebook security team to take immediate action. As a result within few minutes, Facebook security engineer contected Khalil Shreateh and confirmed for more details. The site’s security team then later confirmed that the bug had been fixed.
As per the Facebook bug bounty program, Facebook pays $500 to bug founder but here, Facebook denies to reward Khalil Shreateh. Facebook says that he cannot claim a reward for the bug because in hacking Zuck’s wall he violated Facebook terms of service and also he did not included much technical evidence to report the bug.