{"id":1139,"date":"2016-06-10T09:26:52","date_gmt":"2016-06-10T09:26:52","guid":{"rendered":"https:\/\/antivirus.comodo.com\/blog\/?p=1139"},"modified":"2020-09-23T13:44:44","modified_gmt":"2020-09-23T08:14:44","slug":"security-flaw-found-facebook-messenger","status":"publish","type":"post","link":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/","title":{"rendered":"Security Flaw Found in Facebook Messenger"},"content":{"rendered":"<p>A team of researchers have recently revealed a vulnerability in Facebook&#8217;s Messenger app that gave cybercriminals an advantage to tamper a user&#8217;s chat content and inject malware in the messages.<\/p>\n<p>Researchers from Check Point security firm found that security flaw in Facebook&#8217;s Messenger app, that is available both in mobile and desktop space, allowed third-party actors to modify genuine links present in a user&#8217;s chat box to a malicious one.<\/p>\n<p>The researchers who uncovered the bug reported it to the Facebook team earlier this month, and the social media company claims to have patched the problem soon after. The company rolled out a new update of the Messenger to overcome the threat. Meanwhile, officials at Facebook said that the bug didn&#8217;t pose any major risk to users and only briefly affected Android version of the Messenger app. The Messenger service already has an <a href=\"https:\/\/www.comodo.com\/home\/internet-security\/free-internet-security.php\" target=\"_blank\" rel=\"noopener\">internet security tool<\/a> embedded in it to filter out spam content, malwares and possibly <a href=\"https:\/\/www.comodo.com\/landing\/comodo-conducts-webinar-on-protection-against-ransomware\/\" target=\"_blank\" rel=\"noopener\">ransomware attacks<\/a>, Facebook said.<\/p>\n<p>To execute the attack, any cybercriminal with a sound knowledge of HTML could steal the ID of a particular message threat, possibly using a debugging tool. Empowered with the message ID, they can send a modified \u2013 or malicious \u2013 messages to Facebook&#8217;s servers pretending to be genuine users. The original users of the message would not be notified about it because their message ID makes Facebook believe that it&#8217;s them initiating the communication.<\/p>\n<p>The root problem to this vulnerability lies in the fact that Facebook archives all of its users&#8217; chat history in its servers, which it can retrieve and modify without the user knowing it. So essentially, if attackers were to exploit this security flaw, they would be employing a technique that is easily carried out by Facebook server admins.<\/p>\n<p>End-to-end encryption, meaning if Facebook lets go of its control over users&#8217; messages for the sake of data security, can be of utmost use in this scenario. That way, the users&#8217; messages would be stored on their devices instead of Facebook&#8217;s servers without the possibility of a hacker \u2013 or even Facebook \u2013 tampering the content from a <a title=\"Remote Access\" href=\"https:\/\/remoteaccess.itarian.com\" target=\"_blank\" rel=\"noopener\">remote location<\/a>. The only condition is to have the encryption being properly carried out and authenticated.<\/p>\n<p>From a user point of view, opting for a strong <a href=\"https:\/\/www.comodo.com\/home\/internet-security\/anti-malware.php\" target=\"_blank\" rel=\"noopener\">anti-malware<\/a> or anti-spam product can prevent them from falling prey to malicious attacks, including phishing emails and ransomware threats. An anti-spam software identifies spam content and blocks it from entering a system. Modern anti-spam is equipped with a broad spectrum of filters and scanners and other type of security applications. Anti-malware, while not much different from <a href=\"https:\/\/www.comodo.com\/business-security\/email-security\/antispam-gateway.php\" target=\"_blank\" rel=\"noopener\">anti-spam<\/a> products, get automatic updates on latest virus descriptions and protect computers against all the new threats.<\/p>\n<p><a href=\"https:\/\/antivirus.comodo.com\/download\/thank-you.php?prod=cloud-antivirus&amp;from=blog&amp;af=9356\" onclick=\"ga('send', 'event', {eventCategory: 'Antivirus Blog', eventAction: 'Download', eventLabel: 'FREE DOWNLOAD Product CCAV'});ga('nT.send', 'event', {eventCategory: 'Antivirus Blog', eventAction: 'Download', eventLabel: 'FREE DOWNLOAD Product CCAV'});\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-1888\" src=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/06\/Antispam.jpg\" alt=\"Antispam\" width=\"650\" height=\"250\" \/><\/a><\/p>\n<p><a href=\"https:\/\/secure.nurd.com\/home\/purchase.php?pid=109&#038;af=16166\" target=\"_blank\" rel=\"noopener\" onclick=\"ga('send', 'event', {eventCategory: 'Antivirus Blog', eventAction: 'Click', eventLabel: 'GET COMPLETE PROTECTION banner Product CIS Pro'});ga('nT.send', 'event', {eventCategory: 'Antivirus Blog', eventAction: 'Click', eventLabel: 'GET COMPLETE PROTECTION banner Product CIS Pro'});\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-8604\" src=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2020\/08\/complete-antivirus.png\" alt=\"comodo antivirus\" width=\"650\" height=\"83\" \/><\/a><\/p>\n<p><strong><a href=\"https:\/\/cwatch.comodo.com\/website-backup\/\" rel=\"noopener\" target=\"_blank\">Website Backup<\/a><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A team of researchers have recently revealed a vulnerability in Facebook&#8217;s Messenger app that gave cybercriminals an advantage to tamper a user&#8217;s chat content and inject malware in the messages. Researchers from Check Point security firm found that security flaw in Facebook&#8217;s Messenger app, that is available both in mobile and desktop space, allowed third-party [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[70],"class_list":["post-1139","post","type-post","status-publish","format-standard","hentry","category-computer-safety","tag-anti-spam"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Security Flaw Found in Facebook Messenger | Comodo Antivirus<\/title>\n<meta name=\"description\" content=\"Flaw Found in Facebook Messenger Allowed Attackers to Attach Malicious Content\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Security Flaw Found in Facebook Messenger | Comodo Antivirus\" \/>\n<meta property=\"og:description\" content=\"Flaw Found in Facebook Messenger Allowed Attackers to Attach Malicious Content\" \/>\n<meta property=\"og:url\" content=\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/\" \/>\n<meta property=\"og:site_name\" content=\"Comodo Antivirus Blogs | Anti-Virus Software Updates\" \/>\n<meta property=\"article:published_time\" content=\"2016-06-10T09:26:52+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-09-23T08:14:44+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/06\/Antispam.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1320\" \/>\n\t<meta property=\"og:image:height\" content=\"500\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"seo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"seo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/\",\"name\":\"Security Flaw Found in Facebook Messenger | Comodo Antivirus\",\"isPartOf\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/06\/Antispam.jpg\",\"datePublished\":\"2016-06-10T09:26:52+00:00\",\"dateModified\":\"2020-09-23T08:14:44+00:00\",\"author\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462\"},\"description\":\"Flaw Found in Facebook Messenger Allowed Attackers to Attach Malicious Content\",\"breadcrumb\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/#primaryimage\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/06\/Antispam.jpg\",\"contentUrl\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/06\/Antispam.jpg\",\"width\":1320,\"height\":500,\"caption\":\"Antispam\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/antivirus.comodo.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security Flaw Found in Facebook Messenger\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#website\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/\",\"name\":\"Comodo Antivirus Blogs | Anti-Virus Software Updates\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/antivirus.comodo.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462\",\"name\":\"seo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g\",\"caption\":\"seo\"},\"url\":\"https:\/\/antivirus.comodo.com\/blog\/author\/seo\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Security Flaw Found in Facebook Messenger | Comodo Antivirus","description":"Flaw Found in Facebook Messenger Allowed Attackers to Attach Malicious Content","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/","og_locale":"en_US","og_type":"article","og_title":"Security Flaw Found in Facebook Messenger | Comodo Antivirus","og_description":"Flaw Found in Facebook Messenger Allowed Attackers to Attach Malicious Content","og_url":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/","og_site_name":"Comodo Antivirus Blogs | Anti-Virus Software Updates","article_published_time":"2016-06-10T09:26:52+00:00","article_modified_time":"2020-09-23T08:14:44+00:00","og_image":[{"width":1320,"height":500,"url":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/06\/Antispam.jpg","type":"image\/jpeg"}],"author":"seo","twitter_card":"summary_large_image","twitter_misc":{"Written by":"seo","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/","url":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/","name":"Security Flaw Found in Facebook Messenger | Comodo Antivirus","isPartOf":{"@id":"https:\/\/antivirus.comodo.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/#primaryimage"},"image":{"@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/#primaryimage"},"thumbnailUrl":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/06\/Antispam.jpg","datePublished":"2016-06-10T09:26:52+00:00","dateModified":"2020-09-23T08:14:44+00:00","author":{"@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462"},"description":"Flaw Found in Facebook Messenger Allowed Attackers to Attach Malicious Content","breadcrumb":{"@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/#primaryimage","url":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/06\/Antispam.jpg","contentUrl":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/06\/Antispam.jpg","width":1320,"height":500,"caption":"Antispam"},{"@type":"BreadcrumbList","@id":"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/security-flaw-found-facebook-messenger\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/antivirus.comodo.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Security Flaw Found in Facebook Messenger"}]},{"@type":"WebSite","@id":"https:\/\/antivirus.comodo.com\/blog\/#website","url":"https:\/\/antivirus.comodo.com\/blog\/","name":"Comodo Antivirus Blogs | Anti-Virus Software Updates","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/antivirus.comodo.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462","name":"seo","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g","caption":"seo"},"url":"https:\/\/antivirus.comodo.com\/blog\/author\/seo\/"}]}},"post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1139","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/comments?post=1139"}],"version-history":[{"count":16,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1139\/revisions"}],"predecessor-version":[{"id":15509,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1139\/revisions\/15509"}],"wp:attachment":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/media?parent=1139"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/categories?post=1139"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/tags?post=1139"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}