Facebook pays $20K for easily exploitable flaw that could have led to account hijackings
UK researcher Jack Whitten found that a few easy back-and-forths with Facebook SMS updates on his mobile phone could let him reset passwords on others’ accounts. Facebook gives him $20k for finding it. That deserves a ‘Like’!
Story added 28. June 2013, content source with full text you can find at link above.