e-sushi

e-sushi

Born in design, raised in code, entangled in cybersecurity.

References

Book Features

A random reference would be the book “Dissecting the hack: the f0rb1dd3n network” by Jason E Street.

book cover of “Dissecting the hack: the f0rb1dd3n network” by Jason E Street

In chapter 5, two of my meanwhile abandoned red team software tools – “Lognamer” and “IEClean” – are part of the story.

CreditsCopy at web.archive.org

International Press

Another random reference example would be worldwide press references from 2019, which were published after I noticed Facebook’s security misconduct and after I publically kicked Facebook via Twitter.

screenshot proof

What I had discovered was that Facebook demanded the personal password of the user’s email provider for “some” users upon account registration. It was practically a “hand over the password of your email provider or you don’t get a Facebook account” situation, which allowed Facebook to gain full access to the individual user’s email provider. This was unacceptable from both a security as well as a privacy perspective.

The misconduct I exposed turned out to have had an impact on millions of people worldwide, It did not only affect all those who decided to register for a Facebook account, but also all of their email contacts – no matter if those contacts used Facebook themselves or not.

The according echos in the internetional press (listed in no particular order) speak for themselves…

Security Week

Facebook Demanded User Email Passwords

ArticleCopy at web.archive.org

FastCompany

Now Facebook is asking for your email’s password if you want to use the site

ArticleCopy at web.archive.org

Ars Technica

Facebook asked some users for their email passwords, because why not

ArticleCopy at web.archive.org

Business Insider

Facebook is asking some new users for their email passwords and appears to be harvesting their contacts without consent

ArticleCopy at web.archive.org

Business Insider

Facebook says it “unintentionally uploaded” 1.5 million people‘s email contacts without their consent

ArticleCopy at web.archive.org

Guardian

Facebook uploaded email contacts of 1.5m users without consent

ArticleCopy at web.archive.org

Gizmodo

Facebook Is Just Casually Asking Some New Users for Their Email Passwords

ArticleCopy at web.archive.org

Mashable

Facebook backs away from asking for some users’ email passwords

ArticleCopy at web.archive.org

Security Boulevard

Facebook Forces Users to Give Email Password (wait, what?)

ArticleCopy at web.archive.org

Security Boulevard

With No Permission, Facebook Slurped up ‘Hundreds of Millions‘ of Email Contacts

ArticleCopy at web.archive.org

USA Today

Another scandal: Facebook user data reportedly at risk again

ArticleCopy at web.archive.org

Daily Mirror

Facebook under fire for casually asking users to hand over their email passwords

ArticleCopy at web.archive.org

CNET

Facebook will no longer ask for your email passwords

ArticleCopy at web.archive.org

The Daily Beast

‘Beyond Sketchy’: Facebook Demanding Some New Users’ Email Passwords

ArticleCopy at web.archive.org

Digital Mode

Facebook Wrongfully Gathered Email Contacts From 1.5 Million

ArticleCopy at web.archive.org

RT

Want a new Facebook account? Just hand over your private email password

ArticleCopy at web.archive.org

Newsweek

Facebook Says 1.5 Million Users Impacted in New Email Privacy Scandal

ArticleCopy at web.archive.org

BBC News

Facebook copied email contacts of 1.5 million users

ArticleCopy at web.archive.org

Thread Post

Poll: Facebook Harvests Email Contacts for 1.5M Users – Is Enough, Enough?

ArticleCopy at web.archive.org

Bank Info Security

Facebook Password, Email Contact Mishandling Worsens

ArticleCopy at web.archive.org

Android Community

Facebook apparently asking for your email passwords for verification

ArticleCopy at web.archive.org

Futurism

Facebook “unintentionally” uploaded 1.5 million email contacts

ArticleCopy at web.archive.org

Tech Pulse Belgie

Facebook stopt met verificatie via wachtwoord van e-mailadressen

ArticleCopy at web.archive.org

Le Soir

Facebook demande les mots de passe des adresses mail à ses nouveaux membres

ArticleCopy at web.archive.org

Digital Norway

Facebook krevde passordet til epost fra nye brukere: – En horribel praksis

ArticleCopy at web.archive.org

Be Geek France

Facebook demande le mot de passe du compte email aux nouveaux utilisateurs

ArticleCopy at web.archive.org

PC Welt

Facebook verlangt Mail-Passwort von einigen Nutzern

ArticleCopy at web.archive.org

der Standard

Facebook fragte Nutzer nach Passwort für ihr E-Mail Konto

ArticleCopy at web.archive.org

ESET’s We Live Security

540 millones de registros de usuarios de Facebook expuestos en servidores mal configurados

ArticleCopy at web.archive.org

Il Fatto Quotidiano

Facebook chiede la password della mail ad alcuni utenti, poi ammette che è stata una pessima idea

ArticleCopy at web.archive.org

Citations

Every now and then, something I said or wrote is cited. Here’s a random example…

Thread Post

Hackers Succeed in NASA Mission, Lifting Thousands of Employee Records

ArticleCopy at web.archive.org

More

Using your favorite search engine, you should be able to find ample more references that covered me for various things over the past decades. I refrained from listing them all because there are simply too many of them out there.