Mark Zuckerberg and his security team just learned an important lesson in listening to customers. Khalil Shreateh, a Palestinian researcher discovered a bug in the Facebook programming — one that would allow anyone to post on anyone else’s wall — even Mark Zuckerberg’s.
Unfortunately, through an alleged gap in the translation barrier (and a high volume of people writing in with complaints and tips), the security team for Facebook was unable to determine exactly what it was Shreateh was telling them. So he showed them. First he posted on the wall of a girl who’d gone to college with Zuckerberg, but because the security team wasn’t friends with her (so thinks Shreateh) they allegedly thought it was a faulty link. So Shreateh upped the ante by posting on Zuckerberg’s home page.
“Dear Mr. Zuckerberg, First, sorry for breaking your privacy and post(ing) to your wall,” wrote Khalil Shreateh. “I (have) no other choice to make after all the reports I sent to (the) Facebook team.”
That got Facebook’s attention.
Though the bug was quickly fixed, Shreateh is not eligible for a reward because against Facebook’s policy, he hacked pages in order to make his case. Perhaps this will influence the actions of future tipsters: if you want to teach the big billion dollar company a lesson in good manners, sell your knowledge to corporate spammers instead.