Zuckerberg’s Facebook page hacked to prove security glitch. How safe is your FB page?

This is an archived article and the information in the article may be outdated. Please look at the time stamp on the story to see when it was last updated.

Daland Jones knows what it’s like to be hacked on Facebook. He used to share personal information, until someone  broke into his account and began contacting his friends and family playing the part of him.

“I didn’t know how much information they might have been able to get into through my Facebook account,” said Jones.

Now, Mark Zuckerberg can join the ranks of Facebook users who’ve, like Jones, had also been hacked.

Apparently, a Palestinian programmer figured out a way to post on Zuckerberg’s Facebook page even though they’re not friends and under privacy settings it shouldn’t have been allowed.

The incident, experts said, revealed a  major security flaw in the website that has over one billion users.

“Even without a technical flaw, your data can get out. The only real privacy setting on a lot of these sites is not to be on them,” said Professor Justin Campos.

Computer science professor at the Polytechnic Institute, Justin Cappos, warned us that the Zuckerberg incident is further proof that if you’re online and sharing then you’re at risk wherever site you share on and no matter who you are. And don’t forget, he said, the website company always has access.

“Once you put it on that site, it’s up to that sites privacy policies which may work in confusing ways that are hard to understand where all that data may end up,” said Cappos.

Jones is now his own protector, limiting what he shares, so even if he’s hacked, the hacker won’t be able do much damage. A lesson he had to learn the hard way.

“I don’t share as much information I try to limit my account, pick only friends that I do know,” said Jones.

Facebook encourages so called white hats to show them bugs, there’s even a cash reward for it, but this man is not getting any money. Under Facebook’s   Bug Bounty terms, it is never OK to test on non-consenting user accounts. The problem has been reportedly fixed.