New Delhi, Nov 20 : Facebook has fixed a critical bug in its Messenger app that could have allowed hackers to connect audio calls without the knowledge or approval from the app user.
The vulnerability could have been used to spy on Facebook users via Android phones, reports ZDNet.
The Google researcher reported the issue to Facebook last month, and the social media giant patched it on Wednesday in an update to its Messenger for Android app.
The bug was found during a security audit by Natalie Silvanovich, a researcher working for Google’s Project Zero security team.
In a tweet, Silvanovich said Facebook awarded her a $60,000 bug bounty for reporting the issue.
“There is a message type that is not used for call set-up, SdpUpdate,” Silvanovich was quoted as saying.
Related stories
Subscribe
- Never miss a story with notifications
- Gain full access to our premium content
- Browse free from up to 5 devices at once
Latest stories