Facebook gives $10,000 to 10-year-old boy who found Instagram comments bug

Helsinki youngster spots flaw that removes any comment, “even Justin Bieber”

Facebook Like sign

A 10-year-old boy earned a $10,000 payday after reporting an Instagram bug to Facebook.

Jani, from Helsinki, Finland, discovered that he was able to delete any comment on Instagram, according to Finnish publication Iltalehti.

After reporting the vulnerability to Facebook's bug bounty programme along with proof by deleting a message on a Facebook-run test Instagram account, the social network fixed the problem in February.

Advertisement - Article continues below

Jani, who learned about computer security from YouTube tutorials, was then paid in March and spent the money on a brand new bike, football equipment and two computers for his brothers.

He said: "I would have been able to remove anyone, even Justin Bieber." 

"It would be my dream job," he added, on the topic of becoming a security researcher as a full-time profession. "Security is very important."

Jani is Facebook's youngest successful bug hunter, Facebook confirmed, though it is not uncommon for companies' bug bounty programmes to receive reports from teenagers from time to time.

Facebook has paid more than 800 security researchers $4.3 million for 2,400 bug reports since its bug bounty programme started in 2011.

Of the submissions it received last year, 102 were high-impact bugs, Facebook said, an increase of 38 per cent on the year before.

Advertisement
Advertisement - Article continues below

Security engineer Reginaldo Silva said in a February update about the programme: "The quality of reports we receive is getting better over time, both in terms of clear step-by-step instructions to reproduce the issue as well as thoughtful consideration of potential risk to people who use Facebook." 

Featured Resources

Successful digital transformations are future ready - now

Research findings identify key ingredients to complete your transformation journey

Download now

Cyber security for accountants

3 ways to protect yourself and your clients online

Download now

The future of database administrators in the era of the autonomous database

Autonomous databases are here. So who needs database administrators anymore?

Download now

The IT expert’s guide to AI and content management

Your guide to the biggest opportunities for IT teams when it comes to AI and content management

Download now
Advertisement

Recommended

Visit/security/cyber-security/355267/zoom-hires-ex-facebook-cso-to-boost-platform-security
cyber security

Zoom hires ex-Facebook CSO Alex Stamos to boost platform security

8 Apr 2020
Visit/security/vulnerability/355236/hp-support-assistant-flaws-leave-windows-devices-open-to-attack
vulnerability

HP Support Assistant flaws leave Windows devices open to attack

6 Apr 2020
Visit/security/cyber-security/355234/safari-bug-let-hackers-access-cameras-on-iphones-and-macs
cyber security

Safari bug let hackers access cameras on iPhones and Macs

6 Apr 2020
Visit/software/video-conferencing/355229/zoom-we-moved-too-fast
video conferencing

Zoom CEO admits company "moved too fast" as privacy issues mount

6 Apr 2020

Most Popular

Visit/mobile/mobile-phones/355239/microsofts-patent-design-reveals-a-mobile-device-with-a-third-screen
Mobile Phones

Microsoft patents a mobile device with a third screen

6 Apr 2020
Visit/server-storage/servers/355254/a-critical-flaw-in-350000-microsoft-exchange-remains-unpatched
servers

A critical flaw in 350,000 Microsoft Exchange remains unpatched

7 Apr 2020
Visit/software/video-conferencing/355257/taiwan-first-country-to-ban-zoom-amid-security-concerns
video conferencing

Taiwan becomes first country to ban Zoom amid security concerns

8 Apr 2020