Some problems you just have to take to the top, and that's exactly what one man did when Facebook security officials refused to listen to his warning.
According to CNN on Aug. 19, Palestinian researcher Khalil Shreateh was ignored by Facebook's team when he first reported a bug that would allow other people to post on a person's Facebook wall. He was then ignored a second time, with the message, “Sorry this is not a bug.” So he went to the top. He went to Mark Zuckerberg. Now, he obviously didn't have direct access to the social networking genius, but via this bug, he did have direct access to his wall.
Shreateh posted the following to Zuckerberg’s wall:
“Sorry for breaking your privacy and post (sic) to your wall, I has no other choice to make after all the reports I sent to Facebook team.”
InformationWeek notes that minutes after the post, an engineer responded to Shreateh, asking for more information. Shreateh’s account was then suspended. Obviously, this was in fact a bug. So why was the information ignored before Shreateh’s big move?
A security team member addressed the issue and attributed the delayed response to a language barrier. To make matters even worse for Shreateh, Facebook usually will give a reward out to people who report flaws to Facebook rather than selling them on the black market, but Shreateh will not benefit from that policy. Since the researcher broke Facebook's terms of service, he won't be seeing any cash.
Facebook says the deal with language barriers all the time, but do you think they handled this situation correctly? Do you think Shreateh was hasty by posting directly to Zuckerberg’s page?