{"id":8910,"date":"2016-05-04T16:36:47","date_gmt":"2016-05-04T20:36:47","guid":{"rendered":"http:\/\/blog.nccomputertech.com\/?p=8910"},"modified":"2016-05-04T16:36:47","modified_gmt":"2016-05-04T20:36:47","slug":"facebook-pays-10000-to-10-year-old-for-finding-instagram-flaw-that-allowed-comments-to-be-deleted","status":"publish","type":"post","link":"https:\/\/nccomputertech.com\/techtalk\/2016\/05\/04\/facebook-pays-10000-to-10-year-old-for-finding-instagram-flaw-that-allowed-comments-to-be-deleted\/","title":{"rendered":"Facebook pays $10,000 to 10-year-old for finding Instagram flaw that allowed comments to be deleted"},"content":{"rendered":"<p>By <a href=\"http:\/\/www.techspot.com\/community\/staff\/midian182.370608\/\" target=\"_blank\" rel=\"author\">Rob Thubron<\/a> | <a href=\"http:\/\/www.techspot.com\/news\/64686-facebook-pays-10000-10-year-old-finding-instagram.html\" target=\"_blank\">TechSpot<\/a><\/p>\n<p>You have to be <a href=\"https:\/\/www.facebook.com\/help\/157793540954833\">at least<\/a> 13 years old to have an account on <a href=\"http:\/\/www.techspot.com\/downloads\/5762-instagram-for-android.html\" target=\"_blank\">Instagram<\/a>, but this didn\u2019t stop one 10-year-old Finnish boy from exposing a vulnerability in the Facebook-owned photo-sharing application and winning $10,000 for his work.<\/p>\n<p>Helsinki-based Jani (his parents didn\u2019t reveal his last name) discovered that he could erase any written content on Instagram by altering code on its servers. Facebook told <a href=\"http:\/\/www.forbes.com\/sites\/thomasbrewster\/2016\/05\/03\/facebook-10-year-old-10k-instagram-vulnerability\/#4db11ecf57fc\" target=\"_blank\">Forbes<\/a> that he verified this by deleting a comment the company posted on a test account.<\/p>\n<p>The <a href=\"http:\/\/www.techspot.com\/downloads\/6048-facebook-for-android.html\" target=\"_blank\">Facebook<\/a> spokesperson added that the problem came from a private application program interface not properly checking that the person deleting the comment was the same one who posted it.<\/p>\n<p>\u201cI tested whether the comments section of Instagram can handle harmful code. Turns out it can\u2019t. I noticed that I can delete other people\u2019s comments from there,\u201d Jani told Helskini-based newspaper <a href=\"http:\/\/www.iltalehti.fi\/digi\/2016050221506011_du.shtml\" target=\"_blank\">Iltalehti<\/a>. \u201cI could have deleted anyone\u2019s \u2013 like Justin Bieber\u2019s for example.\u201d<\/p>\n<p>Facebook\u2019s bug bounty program rewards people who identify and report security issues. In the five years since it launched, it has <a href=\"https:\/\/www.facebook.com\/notes\/facebook-bug-bounty\/2015-highlights-less-low-hanging-fruit\/1225168744164016\" target=\"_blank\">paid<\/a> $4.3 million to more than 800 researchers for over 2400 submissions. Instagram was added to the program in 2014.<\/p>\n<p>Payouts vary based on the level of risk a bug poses. Considering the average reward last year was only $1780, Jani\u2019s $10,000 shows that Facebook regarded it as a fairly high-level threat.<\/p>\n<p>Jani, who learned his skills by watching <a href=\"http:\/\/www.techspot.com\/downloads\/5781-youtube-for-mobile.html\" target=\"_blank\">YouTube<\/a> instructional videos, is now the youngest person to receive a reward from the program, beating the record <a href=\"https:\/\/www.facebook.com\/notes\/facebook-security\/an-update-on-our-bug-bounty-program\/10151508163265766\/\" target=\"_blank\">set<\/a> by a 13-year-old back in 2013. He said he plans to buy a football and new bicycle with some of the money.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>By Rob Thubron | TechSpot You have to be at least 13 years old to have an account on Instagram, [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[7,9,10],"tags":[347,527],"class_list":["post-8910","post","type-post","status-publish","format-standard","hentry","category-security","category-software","category-technology","tag-facebook","tag-instagram"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/papNkV-2jI","jetpack-related-posts":[{"id":9403,"url":"https:\/\/nccomputertech.com\/techtalk\/2018\/10\/01\/older-than-the-mini-jack-this-week-in-tech-686\/","url_meta":{"origin":8910,"position":0},"title":"Older Than the Mini Jack &#8211; This Week in Tech 686","author":"NCCT","date":"October 1, 2018","format":false,"excerpt":"https:\/\/youtu.be\/a2BeanU0FsU Facebook breach, Elon\u2019s costly tweet, Google turns 20, and more. --How to tell if your Facebook account is one of the 50 million that were hacked this week --Why the founder of Instagram left Facebook --\"Funding secured\" tweet costs Elon Musk his chairmanship and $40 million --Google turns 20\u2026","rel":"","context":"In &quot;Social Media&quot;","block_context":{"text":"Social Media","link":"https:\/\/nccomputertech.com\/techtalk\/category\/social-media\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/a2BeanU0FsU\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":9364,"url":"https:\/\/nccomputertech.com\/techtalk\/2018\/06\/03\/this-week-in-tech-669-15-minutes-of-fun\/","url_meta":{"origin":8910,"position":1},"title":"This Week in Tech 669: 15 Minutes of Fun","author":"NCCT","date":"June 3, 2018","format":false,"excerpt":"https:\/\/youtu.be\/KQc0YlNQNfY --Apple's WWDC this week looks like it may be a disappointment for anyone hoping for new hardware. --Facebook is killing its \"Trending Topics\" section. --Teens prefer Instagram and Snapchat to Facebook; close to half are \"almost constantly\" online. --The Atari VCS is coming soon for expensive retro gaming. --Scooters\u2026","rel":"","context":"In &quot;Apple&quot;","block_context":{"text":"Apple","link":"https:\/\/nccomputertech.com\/techtalk\/category\/apple\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/KQc0YlNQNfY\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":9220,"url":"https:\/\/nccomputertech.com\/techtalk\/2017\/08\/13\/this-week-in-tech-627-do-you-inkwell\/","url_meta":{"origin":8910,"position":2},"title":"This Week in Tech 627: Do You Inkwell?","author":"NCCT","date":"August 13, 2017","format":false,"excerpt":"https:\/\/youtu.be\/IsqN7JbTj4o Leo, Ashley Esqueda, Michael Nunez, and Dylan Tweney debunk the \"Google Memo.\" Mark Zuckerberg still refuses to admit he is running for president. If you use Instagram's \"Inkwell\" filter, you are probably depressed. Google is taking over the open internet. An MIT Algorithm can tell if you are sarcastic\u2026","rel":"","context":"In &quot;Social Media&quot;","block_context":{"text":"Social Media","link":"https:\/\/nccomputertech.com\/techtalk\/category\/social-media\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/IsqN7JbTj4o\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":9283,"url":"https:\/\/nccomputertech.com\/techtalk\/2018\/01\/15\/this-week-in-tech-649-aging-in-place\/","url_meta":{"origin":8910,"position":3},"title":"This Week in Tech 649: Aging in Place","author":"NCCT","date":"January 15, 2018","format":false,"excerpt":"https:\/\/youtu.be\/jjS7eMmP_t4 Florence Ion, Jason Hiner, and Larry Magid join Leo talk about CES and much more. Voice assistants are everywhere and IoT devices are getting smarter. Innovations in Sleep Tech that will improve your health. Elon Musk's Hyperloop is moving forward. Facebook is changing the Newsfeed feature and you might\u2026","rel":"","context":"In &quot;Social Media&quot;","block_context":{"text":"Social Media","link":"https:\/\/nccomputertech.com\/techtalk\/category\/social-media\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/jjS7eMmP_t4\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":8785,"url":"https:\/\/nccomputertech.com\/techtalk\/2015\/12\/21\/facebook-becomes-the-latest-company-to-ditch-flash-switches-to-html5-for-all-video\/","url_meta":{"origin":8910,"position":4},"title":"Facebook becomes the latest company to ditch Flash, switches to HTML5 for all video","author":"NCCT","date":"December 21, 2015","format":false,"excerpt":"By Rob Thubron | TechSpot In what may be the final nail in the coffin for Flash, Facebook has now abandoned the technology in favor of HTML5 for all web videos that appear on its News Feed, Pages, and in the embedded Facebook video player. Facebook says it is continuing\u2026","rel":"","context":"In &quot;Technology&quot;","block_context":{"text":"Technology","link":"https:\/\/nccomputertech.com\/techtalk\/category\/technology\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":9514,"url":"https:\/\/nccomputertech.com\/techtalk\/2019\/01\/27\/algorithms-are-people-too-this-week-in-tech-703\/","url_meta":{"origin":8910,"position":5},"title":"Algorithms are People, Too &#8211; This Week in Tech 703","author":"NCCT","date":"January 27, 2019","format":false,"excerpt":"https:\/\/youtu.be\/MlQpW0nWEiE 2019 Tech Predictions, CRISPR Babies, Amazon Scout, Foldable Phones, and More! -- WhatsApp, Instagram, Facebook Messenger to Merge -- 2019 Predictions- Amazon Will Rise, Twitter Will Fall -- CRISPR Babies Confirmed -- Amazon Scout Will Usher in the Age of Autonomous Delivery -- France Fines Google 50M Euros --\u2026","rel":"","context":"In &quot;Social Media&quot;","block_context":{"text":"Social Media","link":"https:\/\/nccomputertech.com\/techtalk\/category\/social-media\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/MlQpW0nWEiE\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]}],"_links":{"self":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts\/8910","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/comments?post=8910"}],"version-history":[{"count":0,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts\/8910\/revisions"}],"wp:attachment":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/media?parent=8910"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/categories?post=8910"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/tags?post=8910"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}