{"id":8910,"date":"2016-05-04T16:36:47","date_gmt":"2016-05-04T20:36:47","guid":{"rendered":"http:\/\/blog.nccomputertech.com\/?p=8910"},"modified":"2016-05-04T16:36:47","modified_gmt":"2016-05-04T20:36:47","slug":"facebook-pays-10000-to-10-year-old-for-finding-instagram-flaw-that-allowed-comments-to-be-deleted","status":"publish","type":"post","link":"https:\/\/nccomputertech.com\/techtalk\/2016\/05\/04\/facebook-pays-10000-to-10-year-old-for-finding-instagram-flaw-that-allowed-comments-to-be-deleted\/","title":{"rendered":"Facebook pays $10,000 to 10-year-old for finding Instagram flaw that allowed comments to be deleted"},"content":{"rendered":"<p>By <a href=\"http:\/\/www.techspot.com\/community\/staff\/midian182.370608\/\" target=\"_blank\" rel=\"author\">Rob Thubron<\/a> | <a href=\"http:\/\/www.techspot.com\/news\/64686-facebook-pays-10000-10-year-old-finding-instagram.html\" target=\"_blank\">TechSpot<\/a><\/p>\n<p>You have to be <a href=\"https:\/\/www.facebook.com\/help\/157793540954833\">at least<\/a> 13 years old to have an account on <a href=\"http:\/\/www.techspot.com\/downloads\/5762-instagram-for-android.html\" target=\"_blank\">Instagram<\/a>, but this didn\u2019t stop one 10-year-old Finnish boy from exposing a vulnerability in the Facebook-owned photo-sharing application and winning $10,000 for his work.<\/p>\n<p>Helsinki-based Jani (his parents didn\u2019t reveal his last name) discovered that he could erase any written content on Instagram by altering code on its servers. Facebook told <a href=\"http:\/\/www.forbes.com\/sites\/thomasbrewster\/2016\/05\/03\/facebook-10-year-old-10k-instagram-vulnerability\/#4db11ecf57fc\" target=\"_blank\">Forbes<\/a> that he verified this by deleting a comment the company posted on a test account.<\/p>\n<p>The <a href=\"http:\/\/www.techspot.com\/downloads\/6048-facebook-for-android.html\" target=\"_blank\">Facebook<\/a> spokesperson added that the problem came from a private application program interface not properly checking that the person deleting the comment was the same one who posted it.<\/p>\n<p>\u201cI tested whether the comments section of Instagram can handle harmful code. Turns out it can\u2019t. I noticed that I can delete other people\u2019s comments from there,\u201d Jani told Helskini-based newspaper <a href=\"http:\/\/www.iltalehti.fi\/digi\/2016050221506011_du.shtml\" target=\"_blank\">Iltalehti<\/a>. \u201cI could have deleted anyone\u2019s \u2013 like Justin Bieber\u2019s for example.\u201d<\/p>\n<p>Facebook\u2019s bug bounty program rewards people who identify and report security issues. In the five years since it launched, it has <a href=\"https:\/\/www.facebook.com\/notes\/facebook-bug-bounty\/2015-highlights-less-low-hanging-fruit\/1225168744164016\" target=\"_blank\">paid<\/a> $4.3 million to more than 800 researchers for over 2400 submissions. Instagram was added to the program in 2014.<\/p>\n<p>Payouts vary based on the level of risk a bug poses. Considering the average reward last year was only $1780, Jani\u2019s $10,000 shows that Facebook regarded it as a fairly high-level threat.<\/p>\n<p>Jani, who learned his skills by watching <a href=\"http:\/\/www.techspot.com\/downloads\/5781-youtube-for-mobile.html\" target=\"_blank\">YouTube<\/a> instructional videos, is now the youngest person to receive a reward from the program, beating the record <a href=\"https:\/\/www.facebook.com\/notes\/facebook-security\/an-update-on-our-bug-bounty-program\/10151508163265766\/\" target=\"_blank\">set<\/a> by a 13-year-old back in 2013. He said he plans to buy a football and new bicycle with some of the money.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>By Rob Thubron | TechSpot You have to be at least 13 years old to have an account on Instagram, [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[7,9,10],"tags":[347,527],"class_list":["post-8910","post","type-post","status-publish","format-standard","hentry","category-security","category-software","category-technology","tag-facebook","tag-instagram"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/papNkV-2jI","jetpack-related-posts":[{"id":9403,"url":"https:\/\/nccomputertech.com\/techtalk\/2018\/10\/01\/older-than-the-mini-jack-this-week-in-tech-686\/","url_meta":{"origin":8910,"position":0},"title":"Older Than the Mini Jack &#8211; This Week in Tech 686","author":"NCCT","date":"October 1, 2018","format":false,"excerpt":"https:\/\/youtu.be\/a2BeanU0FsU Facebook breach, Elon\u2019s costly tweet, Google turns 20, and more. --How to tell if your Facebook account is one of the 50 million that were hacked this week --Why the founder of Instagram left Facebook --\"Funding secured\" tweet costs Elon Musk his chairmanship and $40 million --Google turns 20\u2026","rel":"","context":"In &quot;Social Media&quot;","block_context":{"text":"Social Media","link":"https:\/\/nccomputertech.com\/techtalk\/category\/social-media\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/a2BeanU0FsU\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":9364,"url":"https:\/\/nccomputertech.com\/techtalk\/2018\/06\/03\/this-week-in-tech-669-15-minutes-of-fun\/","url_meta":{"origin":8910,"position":1},"title":"This Week in Tech 669: 15 Minutes of Fun","author":"NCCT","date":"June 3, 2018","format":false,"excerpt":"https:\/\/youtu.be\/KQc0YlNQNfY --Apple's WWDC this week looks like it may be a disappointment for anyone hoping for new hardware. --Facebook is killing its \"Trending Topics\" section. --Teens prefer Instagram and Snapchat to Facebook; close to half are \"almost constantly\" online. --The Atari VCS is coming soon for expensive retro gaming. --Scooters\u2026","rel":"","context":"In &quot;Apple&quot;","block_context":{"text":"Apple","link":"https:\/\/nccomputertech.com\/techtalk\/category\/apple\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/KQc0YlNQNfY\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":9514,"url":"https:\/\/nccomputertech.com\/techtalk\/2019\/01\/27\/algorithms-are-people-too-this-week-in-tech-703\/","url_meta":{"origin":8910,"position":2},"title":"Algorithms are People, Too &#8211; This Week in Tech 703","author":"NCCT","date":"January 27, 2019","format":false,"excerpt":"https:\/\/youtu.be\/MlQpW0nWEiE 2019 Tech Predictions, CRISPR Babies, Amazon Scout, Foldable Phones, and More! -- WhatsApp, Instagram, Facebook Messenger to Merge -- 2019 Predictions- Amazon Will Rise, Twitter Will Fall -- CRISPR Babies Confirmed -- Amazon Scout Will Usher in the Age of Autonomous Delivery -- France Fines Google 50M Euros --\u2026","rel":"","context":"In &quot;Social Media&quot;","block_context":{"text":"Social Media","link":"https:\/\/nccomputertech.com\/techtalk\/category\/social-media\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/MlQpW0nWEiE\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":9393,"url":"https:\/\/nccomputertech.com\/techtalk\/2018\/08\/19\/this-week-in-tech-680-hacky-hack-hack\/","url_meta":{"origin":8910,"position":3},"title":"This Week in Tech 680: Hacky Hack Hack","author":"NCCT","date":"August 19, 2018","format":false,"excerpt":"https:\/\/youtu.be\/7ClMz3MkTJk This Week in Tech Elon's Twitter addiction, $1200 iPhone XS+, Movie Pass Fail, Pai's lie, and more. --Leave Elon alone! Tesla tumbles after Musk laments his \"most difficult and painful year.\" --Google employees revolt over China rumors; town hall meeting shut down due to \"kerfuffle\" tweets. --Apple thinks that\u2026","rel":"","context":"In &quot;Technology&quot;","block_context":{"text":"Technology","link":"https:\/\/nccomputertech.com\/techtalk\/category\/technology\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/7ClMz3MkTJk\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":9307,"url":"https:\/\/nccomputertech.com\/techtalk\/2018\/03\/11\/this-week-in-tech-657-dadgum-cell-phone\/","url_meta":{"origin":8910,"position":4},"title":"This Week in Tech 657: DadGum Cell Phone","author":"NCCT","date":"March 11, 2018","format":false,"excerpt":"https:\/\/youtu.be\/KGrJJj_8YHU SXSW features killer robots and killer barbeque. Alexa's spontaneous laugh makes us afraid of an AI takeover. Amazon wants to take over your checking account. Can blockchain reinvent fintech? Android users more loyal than iOS users. Is AI really all that smart? Apple hires M. Night Shyamalan. Millennials love\u2026","rel":"","context":"In &quot;Social Media&quot;","block_context":{"text":"Social Media","link":"https:\/\/nccomputertech.com\/techtalk\/category\/social-media\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/KGrJJj_8YHU\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":9387,"url":"https:\/\/nccomputertech.com\/techtalk\/2018\/07\/29\/this-week-in-tech-677-to-serve-cat\/","url_meta":{"origin":8910,"position":5},"title":"This Week in Tech 677: To Serve Cat","author":"NCCT","date":"July 29, 2018","format":false,"excerpt":"https:\/\/youtu.be\/9koTMZi05pk This Week in Tech Facebook's stock crash, Tesla surfboards, Russia hacks utilities, and more. -- Jason Calacanis tells us what's going on with his buddy Elon Musk. -- Apple fixes the MacBook Pro's throttling issue. -- Facebook and Twitter stock takes a dive over poor growth numbers, but Google\u2026","rel":"","context":"In &quot;Apple&quot;","block_context":{"text":"Apple","link":"https:\/\/nccomputertech.com\/techtalk\/category\/apple\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/9koTMZi05pk\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]}],"_links":{"self":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts\/8910","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/comments?post=8910"}],"version-history":[{"count":0,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts\/8910\/revisions"}],"wp:attachment":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/media?parent=8910"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/categories?post=8910"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/tags?post=8910"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}