43 {{ upvoteCount | shortNum }}
43 {{ upvoteCount | shortNum }}

How I hacked your Facebook account by Jeremy Shoemaker

by Marvin Johnston
35 replies
This is an excellent blog post by Jeremy Shoemaker.

How I hacked your Facebook account

I know that nobody here would be so careless, but it might help someone you know .

Marvin
#account #facebook #hacked #jeremy #shoemaker
  • Profile picture of the author lacraiger
    that plugin made headlines a couple months ago... still a good post though because most people who are aware are just too careless to make the same mistake...
    Signature
    Event Planner in Philippines
    {{ DiscussionBoard.errors[3504225].message }}
  • Profile picture of the author fullmatrix
    Good info, I had thoughts about the possibilities of my logen details sniffed through public wifi but didn't think its that easy. Thanks!
    {{ DiscussionBoard.errors[3504273].message }}
  • Profile picture of the author scrofford
    Very good read! Makes you really think! It's so easy to forget and end up having lots of problems...I think that everyone who gets on Facebook or any other social site needs to see this article!
    {{ DiscussionBoard.errors[3504278].message }}
    • Profile picture of the author markv
      Thanks for the heads up on this security issue. I guess a lot of us on this forum, like myself, also have children with mobiles which makes safety issues like this one a big worry. I will be going round all of my kids mobiles this evening to change the settings and secure their phones.
      {{ DiscussionBoard.errors[3504665].message }}
  • Profile picture of the author mysterrio
    Thanks for posting that article link here. It is always good to be reminded. (Now please stay out of my facebook...lol)
    Signature

    The Gurus Have Lied To You: Learn Internet Marketing For FREE. Don't Spend Another Penny Before You Read My FREE REPORT. Go here: http://internetmarketingdude.xyz

    {{ DiscussionBoard.errors[3504688].message }}
  • Profile picture of the author WillR
    Originally Posted by Chris Kent View Post

    Wow Shoemoney is a few months late. He must have nothing to write about at the moment but no doubt his followers will lap it up!
    Better late than never. It was good of him to post it and make his subscribers aware of the issue BUT I probably would not be admitting on a public blog to intentionally hacking other people's Facebook and Google accounts, which is exactly what he was doing.

    Not a smart move.

    "I just fired up FireFox with the FireSheep extension. Within seconds
    I have access to various peoples Gmail, Facebook, Yahoo, Hotmail.
    Amazon, Hotmail, and virtually every possible service known to man..."
    "As you can see here I accessed someones Facebook account…
    read some messages. Its great for passing spare time..."
    "Google accounts are just as easy to get into using the brainless
    Firesheep extension. I don’t ever do anything malicious…
    Just maybe set people’s search results to Vietnamese or something..."
    Malicious or not, it's still ILLEGAL
    Signature

    .


    .

    {{ DiscussionBoard.errors[3504763].message }}
  • Profile picture of the author Marvin Johnston
    Originally Posted by Chris Kent View Post

    Wow Shoemoney is a few months late. He must have nothing to write about at the moment but no doubt his followers will lap it up!
    Unfortunately, that is typical "if I've heard of it, everyone else must have too" thinking. Such is not always the case.

    And while I agree with Will about publicly posting about getting into others accounts may not have been a really good idea, it also makes me wonder how else something like this could have been presented to get the impact.

    Marvin
    {{ DiscussionBoard.errors[3506330].message }}
    • Profile picture of the author Jill Carpenter
      Anything you stick up on the web in general is not private - especially on places like Facebook.

      If you want any level of real privacy or security you are going to have to pay for it.

      And even if you pay on a site someone else owns you are still wide open to the owners and administrators of that site peeking into your files.

      You want privacy? You need to take someone into the woods and have a chat.
      Signature

      "May I have ten thousand marbles, please?"

      {{ DiscussionBoard.errors[3506421].message }}
    • Profile picture of the author Marvin Johnston
      Originally Posted by Chris Kent View Post

      No, I never assumed that so don't assume that about me. Unless you are psychic and you know what I am "thinking", as you say.

      You automatically assume that Shoemoney spreads that news as charity, public information. His post is reminscent of some new posts I see here just regurgitating pretty well-known information.

      Sure, some people might not know it already. But many already do.

      Blogs are supposed to be timely, are they not? Or should we blog about bum marketing and directory generator sites?
      I rarely find ANYTHING that is posted online publicly that falls under the classification of "new" information. So being "new" is certainly not the criteria I use when posting information.

      My sole criteria is will some people find the information useful.

      And I think some people have found this post useful.

      Marvin
      {{ DiscussionBoard.errors[3510428].message }}
      • Profile picture of the author JamieSEO
        Originally Posted by Marvin Johnston View Post

        I rarely find ANYTHING that is posted online publicly that falls under the classification of "new" information. So being "new" is certainly not the criteria I use when posting information.

        My sole criteria is will some people find the information useful.

        And I think some people have found this post useful.

        Marvin
        I always measure information in terms of how useful it is. Even if news is "old" that does not mean you have heard about it before.

        With over 500 MILLION active Facebook users at the moment I think it is a pretty sure bet that at least some of them had not heard about this before :rolleyes:
        Signature

        {{ DiscussionBoard.errors[3512610].message }}
  • Profile picture of the author hotseochick
    oh technology...how you get so many in trouble
    Signature

    End of Line

    {{ DiscussionBoard.errors[3509109].message }}
  • Profile picture of the author laurenswuyts
    Facebook and Twitter are easily to hack. Not that you can change the website's theme but you can hack other people's passwords. I know a guy who can do that.
    But don't be afraid who want's to hack a facebook account?
    If you don't got enemies you should be fine
    Signature
    {{ DiscussionBoard.errors[3509228].message }}
  • Profile picture of the author pyrotechno
    lol very amusing
    {{ DiscussionBoard.errors[3509667].message }}
  • Profile picture of the author MoneyMonkey
    Thanks for the great read. I think I saw this earlier(?). FaceBook I think is one of the best social networking companies to fix errors efficiently.
    {{ DiscussionBoard.errors[3509752].message }}
  • Profile picture of the author izrafel
    LOL this is hilarious
    {{ DiscussionBoard.errors[3509787].message }}
  • Profile picture of the author Nick Sammut
    Great post by Jeremy, he is on the money once again
    Signature
    Periscope Traffic Secrets

    My 10 Sources Of Unlimited Traffic

    Untapped Traffic Avalanche
    {{ DiscussionBoard.errors[3509896].message }}
  • Profile picture of the author Mike McAleer
    Wow I never realized this but can he get in trouble for that?
    Signature

    Recent domain flips : $8->$1000 Social recruiting Software dot com $8->$2000 MobileSalesSoftware.com
    Invest in domains without the hard work !
    Email for details...Mike McAleer at me dot com

    {{ DiscussionBoard.errors[3509915].message }}
    • Profile picture of the author Marvin Johnston
      Originally Posted by Mike McAleer View Post

      Wow I never realized this but can he get in trouble for that?
      I have little doubt he ran in by some legal advisors before he posted.

      Also, if it what he did was illegal, why would that plugin still be available? Or at the very least, why is it not on the public radar of "the enforcers"?

      Marvin
      {{ DiscussionBoard.errors[3509943].message }}
  • Profile picture of the author aaronngoh
    That is really good information that you share. In fact I share your blog post with others facebook users.

    I started to implement the strategies that you mention
    Signature
    http://www.wellnessnumberone.com
    {{ DiscussionBoard.errors[3510770].message }}
  • Profile picture of the author Steven Miranda
    I have used the tool he speaks about and it is quite scary how vunverable Facebook is leaving its users.
    {{ DiscussionBoard.errors[3510795].message }}
  • Profile picture of the author dailysnatch
    So much for privacy. No matter what this is illegal. Sniffing into someone's account is a no-no attitude.
    Signature
    {{ DiscussionBoard.errors[3511494].message }}
    • Profile picture of the author WillR
      Originally Posted by dailysnatch View Post

      So much for privacy. No matter what this is illegal. Sniffing into someone's account is a no-no attitude.
      Exactly. You DON'T go and rob a bank just to prove to people how lapse the banks security is. What he did was illegal and should not be getting publicized in this forum.

      Besides, this security issue is not new and has been known about for months and months now. If he was really on top of things he would have written this post many months ago. There is no point finding out about these things when it's too late and there is no point showing others how to replicate the illegal activities. Irresponsible.
      Signature

      .


      .

      {{ DiscussionBoard.errors[3511814].message }}
      • Profile picture of the author Marvin Johnston
        Originally Posted by WillR View Post

        Exactly. You DON'T go and rob a bank just to prove to people how lapse the banks security is. What he did was illegal and should not be getting publicized in this forum.

        Besides, this security issue is not new and has been known about for months and months now. If he was really on top of things he would have written this post many months ago. There is no point finding out about these things when it's too late and there is no point showing others how to replicate the illegal activities. Irresponsible.
        You don't go wandering around after dark in certain areas of some towns either. Wouldn't you rather know where those areas are?

        Instead of knocking the messenger, how about knocking the people that have the capability of closing this hole, but chose not to.

        Marvin
        {{ DiscussionBoard.errors[3513508].message }}
        • Profile picture of the author WillR
          Originally Posted by Marvin Johnston View Post

          You don't go wandering around after dark in certain areas of some towns either. Wouldn't you rather know where those areas are?

          Instead of knocking the messenger, how about knocking the people that have the capability of closing this hole, but chose not to.

          Marvin
          As I said in my post above, there is no problem with telling people, that's fine by me. But don't show them you actually hacking into people's accounts. That is not fine and is irresponsible and illegal.

          All he needed was the second half of the post that tells people what changes they need to make to secure their accounts. By walking people step by step through the actual hacking process I bet there are now more people out their hacking accounts than there were before he even wrote this post.

          All you have to do is look at a few of the comments that have been left below the post...

          "Wow is it really that easy to do this. I am curious and I am going to give it a try."
          "Thanks for the HOT TIPS on hacking peoples accounts!"
          "I’m a little curious to try this, but it’s also kinda scary that you don’t know who could be watching your every Internet move!"
          I stand by my original opinion on this.
          Signature

          .


          .

          {{ DiscussionBoard.errors[3515437].message }}
          • Profile picture of the author Exfilius
            When you are surfing web from a public wifi without an SSH tunnel you are pretty much asking to be hacked. Same thing applies to internet cafes who have connected all their computers to the network through a switch. In that situation even SSL won't help you as fake SSL certificate can be sent to you through ARP poisoning.
            {{ DiscussionBoard.errors[3515515].message }}
          • Profile picture of the author Marvin Johnston
            Originally Posted by WillR View Post

            As I said in my post above, there is no problem with telling people, that's fine by me. But don't show them you actually hacking into people's accounts. That is not fine and is irresponsible and illegal.

            All he needed was the second half of the post that tells people what changes they need to make to secure their accounts. By walking people step by step through the actual hacking process I bet there are now more people out their hacking accounts than there were before he even wrote this post.

            I stand by my original opinion on this.
            I can understand where you are coming from, and you are not alone in your opinions about this.

            There will always be people who need "proof" before they take action. And for them, that first part should provide no doubt that this is possible. So exposing the method certainly does that.

            The bigger problem as I stated before is what about the people who can do something about this problem and choose to sit quietly by?

            I really don't think this is any different from the ... can't remember the name of the group ... white hat hackers? ... who show something somewhat privately and then make it public to get some action taken.

            This security hole SHOULD NOT EXIST. But since it does, educating everyone is a smart move. Especially since it has been a number of months since this security hole was first exposed.

            Marvin
            {{ DiscussionBoard.errors[3515622].message }}
  • Profile picture of the author Maruk
    Geez.. I am so glad that I on a LAN almost 99% of time...
    Imagine all you private stuff being invaded. It's like somebody broke into your house and messed up the place!
    {{ DiscussionBoard.errors[3511939].message }}
  • Profile picture of the author Rambo007
    Are you sure hacking a facebook account is technically illegal?

    Can you actually be prosecuted for that?
    {{ DiscussionBoard.errors[3512673].message }}
    • Profile picture of the author Sarah S
      Originally Posted by Rambo007 View Post

      Are you sure hacking a facebook account is technically illegal?

      Can you actually be prosecuted for that?
      From what I understand, the Computer Misuse Act of 1990 strictly prohibits "unauthorized access" to a computer system, and therefore, infringement of this rule could potentially lead to prosecution.

      And of course, it's also against Facebook's Terms of Service, so it could result in the hacker's account getting banned. That being said, I don't think most people actually go so far as to try to track down and prosecute Facebook hackers, but that doesn't mean they couldn't if they wanted to.
      {{ DiscussionBoard.errors[3516017].message }}
  • Profile picture of the author facemook
    wow im amaze now i know what i do nice blog
    {{ DiscussionBoard.errors[5645928].message }}
  • Profile picture of the author KingKuba
    There's an app on Android to hack all your information if you are using public wifi and other low secure connections.

    Very easy and scary.

    Basically sit at your local starbucks and take everyone's accounts....

    if you are into such things.
    Signature
    http://www.statsprofessor.org/
    {{ DiscussionBoard.errors[5646075].message }}

Trending Topics