University of Southern California

Could Your iPhone Be Used To Hijack Your Facebook Account?

Posted on by beltzer

A vulnerability in the Facebook application on several popular mobile devices may potentially allow someone to take control of your Facebook account.

Developers have discovered that the Facebook application for iOS (iPhone, iPad, and iPod Touch) and Android-based devices does not properly encrypt the property list, or .plist,, files used to log in to Facebook. If these .plist files are copied to another device, they can be used by anyone to log into your Facebook account. This would allow anyone with access to the second device the ability to see all of your Facebook information, make posts on your or your friends’ walls, send private messages, and take many other actions on Facebook using your account.

For more information on this issue, see Facebook ID theft threat imapcts all iPhones, Dropbox on www.cnet.com.

Comments are closed.