Information security professionals can take preventive security practices to the next level by learning how to hack. As opposed to malicious “black hat” hacking, ethical “white hat” hacking (also called penetration testing) involves using computer hacking skills to identify network security vulnerabilities and patch security holes before anyone can abuse them.

Certified Ethical Hacker (CEH) is a qualification obtained by assessing the security of computer systems, using penetration testing techniques.

Certified Ethical Hacker is open to different opportunities both in the company as well as freelancing opportunities.

Bengaluru-based hacker Anand Prakash has been awarded $15,000 (approximately Rs 10 lakh) for finding a bug in Facebook‘s login system. The bug, if exploited, could let hackers access a user’s messages, photos and even debit/credit card details stored in the payments section, among others.

In a blog post, Prakash — who also works as a security analyst at Flipkart — said Facebook acknowledged the issue promptly and fixed it.

Prakash sent the bug report to the Facebook security team on February 22 and received a mail about the reward on March 2.

Facebook pays Indian $12,500 for finding photo-deleting bug

On his blog, Prakash wrote:

Whenever a user forgets his password on Facebook, he has an option to reset the password by entering his phone number/ email address on https://www.facebook.com/login/identify?ctx=recover&lwv=110, Facebook will then send a 6 digit code on his phone number/email address which user has to enter in order to set a new password.


I tried to brute the 6 digit code on www.facebook.com and was blocked after 10-12 invalid attempts. Then I looked out for the same issue on beta.facebook.com and mbasic.beta.facebook.com and interestingly (the) rate limiting was missing on forgot password endpoints. I tried to take over my account (as per Facebook’s policy you should not do any harm on any other users account) and was successful in setting new password for my account. I could then use the same password to login in the account.

Facebook, as well as many other technology giants, run bug bounty programmes to encourage independent ethical hackers to try and crack their security code in order to identify vulnerabilities in the system. In 2015, the social media giant paid a total of $936,000 to 210 researchers for finding bugs.

Born in Bhadra, Rajasthan, Prakash went to Vellore Institute of Technology to pursue his B Tech in computer science engineering. According to a report by YourStory.com, Prakash has earned over Rs 1 crore so far by finding such bugs and has reported over 80 bugs to Facebook alone. In 2015, he was ranked No. 4 and globally by Facebook for finding the most bugs on the social networking website. Major companies that have paid him for finding bugs in their code include Google, Twitter, Adobe, RedHat, SoundCloud, Nokia, PayPal and eBay, among others.
You can also pursue your career in Ethical Hacking through the Cognitel’s “Master The Core Technologies Of Ethical Hacking” Training Program.

 

1466067913455 (1)

 

Cognitel is planning 5 LIVE Online Sessions on Ethical Hacking, which shall help individuals in understanding the concepts and also prepares for the CEH Exam. The live classes start from June 20th, 2016 at 1900 hours (IST). The learning is blended with theoretical sessions and practical lab exercises.
Please visit www.cognitel.com, to know more about the course.
Posted in Ethical Hacking.

12 Comments

  1. This is blog is very nice and very helpfull This blog about Ethical Hacking and other Computer Security System,This blog is informaing the Certified Ethical Hacking Institute and course .

  2. This is blog is very nice and very helpfull This blog about Ethical Hacking and other Computer Security System,
    This blog is informaing the Certified Ethical Hacking Institute and course .

  3. This blog is very nice and provide Best Information About The Ethical Hacking Training and other Computer Security System . This is artical is informaing the Certified Ethical Hacker institute and course

  4. This Artical is very nice and provide Best Information About The Ethical Hacking Training and other Computer Security System . This is artical is informaing the Certified Ethical Hacker institute and course

  5. Thanks for this awesome meaning full article for ethical hacking and EHE . from now onwards would love to read your articles daily.

  6. Well, You gave us a clear explanation about this category, I got the best information and suggestions they very help us and very useful to us. Thanks for sharing the best posts they amazing. You have done a great job it very nice. Thank you all

  7. You made a good site and giving us such a good and useful suggestions they very help us. Thanks for sharing the information with us. I am impressed with your site and also I like your site a lot.

  8. This article is awesome and provides best information about the internet hacking and other computer security system. This is the article which is fabulous for informing the certified hacking institute and courses. I find this very helpful.

  9. I must say you have hi quality content here.
    Your website should go viral. You need initial boost only.
    How to get it? Search for; Etorofer’s strategies

Leave a Reply to https://www.facebook.com/events/1222778351184787/ Cancel reply

Your email address will not be published. Required fields are marked *