New FBController Application Hacks Facebook's Session Algorithm

As Facebook has grown, the need for greater session security has increased to avoid hackers and spammers looking to exploit users. That doesn’t mean their system can’t be broken. 26-year-old Azim Poonawala has successfully built a piece of software that currently cracks Facebook sessions with the assistances of a user’s cookie information. While acquiring an individual’s personal cookie information requires a little bit of extra effort, it’s most definitely a feasible task.

As Jeremiah Grossman, Chief Technology Officer of WhiteHat Security told Elinor Mills of CNet, “The mere existence of such a tool leads me to believe that huge numbers of FB accounts are and continue to be compromised and the bad guys need to scale their access.” Honestly it’s not surprising to see that someone has compromised Facebook’s session system although it definitely required a substantial time investment.