InfoSecBulletin Cybersecurity for mankind
Samip Aryal informed a Nepali media outlet about discovering a vulnerability in Facebook that could allow for an ‘account takeover.’ According to Aryal, the vulnerability could be exploited to take control of any user’s account with minimal effort.
Microsoft Confirms 900+ XSS Vulns Found in IT Services
Daily Security Update Dated : 15.09.2025
IBM QRadar SIEM Vuln Let Attackers Perform Unauthorized Actions
Major Australian Banks using Army of AI Bots to Scam Scammers
F5 to acquire CalypsoAI for $180M for Advanced AI Security Capabilities
AI Pentesting Tool ‘Villager’ Merges Kali Linux with DeepSeek AI for Automated Attacks
CVE-2025-21043
Samsung Patched Critical Zero-Day Flaw Exploited in Android Attacks
Albania appoints world’s first AI minister, “Diella” to Tackle Corruption
L7 DDoS Botnet Hijacked 5.76M Devices for Large Attacks
Palo Alto Networks User-ID Credential Agent Vuln Exposes password In Cleartext
While he is currently ranked as one of the top hackers, there may be someone with a higher score in that position. Aryal mentioned that for now, 2024 is ranked first. Previously, Aryal reported security vulnerabilities to Facebook and was ranked 27th.
Finding this type of security vulnerability is a top priority for cyber security researchers. Aryal also made it a priority.
“This is Facebook’s Priority Based Vulnerability (priority security weakness),” he said. Earlier I looked at two factor authentication bypass. That is also a priority. This is definitely the highest priority.”
For discovering this weakness, Facebook has honored him in the Hall of Fame and given him a monetary reward.
Aryal found a weakness that could take over anyone’s account, but accounts with two-factor authentication cannot be taken over. OTP is needed to access these accounts, and it cannot be accessed because it goes to phone or email. Aryal recommends enabling two-factor authentication for added Facebook account security.
