Meta (NASDAQ: FB) formerly Facebook New Bug Bounty Data Scraping

Meta Platforms Inc. (NASDAQ: FB) formerly Facebook, once used the process data “scraping”. Today Meta announced a new enhancement to its bug bounty program with the launch of an industry-first bug bounty program for data “scraping” as well as offering further education opportunities for researchers.

The social networking service originally launched as FaceMash on October 28, 2003, before changing its name to TheFacebook on February 4, 2004. In 2004, Napster founder and angel investor Sean Parker became the company’s president. The company changed the site’s name from TheFacebook to just Facebook after purchasing the domain name in 2005 for $200,000.

The Meta bug bounty program will now award valid reports about scraping methods, even if the data they target is public. The program will allow Meta, previously Facebook, to find vulnerabilities that enable attackers to bypass scraping limitations to access data at a greater scale than the product intended. Doing so will allow Meta quickly to identify and counter scenarios that might make scraping less costly to execute.

In addition, Meta is also expanding its data bounty program to reward reports of unprotected or openly public databases containing at least 100,000 unique Facebook user records with personally identifiable information or sensitive data such as email, phone number, physical address, religious or political affiliation. To qualify, the reported dataset must be unique and not previously known or reported to Meta.

Bug Bounty Mechanics

If a database is confirmed as including PII and was scraped and exposed online, Meta will work with the relevant entity to remove the dataset or seek legal means to ensure the issue is addressed. To avoid providing an incentive for scraping activity — where a person may intentionally scape the data then present it to Meta — bounty payments for valid reports of scraped datasets will be made in the form of charity donations to nonprofits of the researcher’s choosing.

To encourage and help cultivate a more sustained interest among new and existing researchers, Meta is also expanding education opportunities, especially certain bug areas that are difficult to transition between, such as software-to-hardware bug hunting.

Later this year, Meta will also launch a dedicated education center to help quickly onboard bug bounty researchers onto different products and technologies so that they can cut the time it takes to hunt new areas for bugs.

Since the launch of its bug bounty program in 2011, Meta has paid more than $14 million in bug bounties and received more than 150,000 reports, of which more than 7,800 were awarded a bounty. So far this year, the company awarded more than $2.3 million to researchers from 46 countries.

Meta NASDAQ:FB formerly Facebook after high-profile leaks | efani SAFE?

Meta, formerly Facebook, is restricting the flow of internal information after high-profile leaks, report says

  • Meta has changed its company culture to restrict the flow of internal information, per The Verge.
  • This follows the leaking of company documents by whistleblower Frances Haugen.
  • Meta, formerly Facebook, has canceled presentations and slowed the release of internal research, per The Verge.

Meta, the company formerly known as Facebook, has shifted its culture to make information less easily accessible to its own staff, according to a new report from The Verge.

The Verge’s Alex Heath reported that he had spoken to an undisclosed number of current and former Meta employees over the past month and reviewed posts on Meta’s internal message board, Workplace.

Per the report, the shift came after former Facebook employee and whistleblower Frances Haugen began leaking a trove of company documents in September, which led to the wave of bad PR the company is currently facing. CEO Mark Zuckerberg has said the leaks painted a “false picture” of the company, and that the documents had been taken out of context.

Examples of the culture shift in The Verge’s report included Meta canceling an internal talk from a researcher about coping with working at a company that is bombarded by bad press. The company’s legal and communications department decided there was too great a risk of it leaking, per The Verge.