It didnt matter how private you thought your email address was I could have grabbed it.
And finally, last Tuesday they did reward him.
Users in several cases choose to keep their email addresses private.
However, DeVoss found a bug when he cancelled pending invitations to those invited to be Facebook Group Administrators.
Next, he moved over to Facebooks mobile view of the Page Roles tab.
In a blog post describing his discovery, he wrote that the effect of this vulnerability could be diverse.
Confirming the hack, Facebook said that it has no proof that the vulnerability was ever exploited.
It also said that has implemented a fix to stop the bug from being abused.
It paid out $611,741 to 149 researchers in the first half of 2016 alone, said the company.
source: www.techworm.net
