Instagram App Access Token Leak: A Meta Bug Bounty Case Study
Ekoparty Security Conference via YouTube
Overview
Watch a 31-minute conference talk from Ekoparty Security Conference where Philippe Harewood and Samuel Cohen detail their journey discovering and reporting an Instagram security vulnerability through Meta's Bug Bounty program. Learn about the complete vulnerability management lifecycle, from initial discovery through the fixing process, including the implementation of defense-in-depth measures. Gain insights from both the security researchers' perspective and the program's point of view as they discuss the technical aspects of the Instagram app access token leak vulnerability.
Syllabus
Instagram App Access Token Leak - Philippe Harewood & Samuel Cohen - Ekoparty 2024
Taught by
Ekoparty Security Conference