You don't need to know it. [vanityname]@facebook.com should work just fine. For example, if my Facebook URL were:
http://facebook.com/adampapsynet Then you'd be able to reference that account using [email protected] . That was the biggest shocker to me, when they started auto-creating those emails without the user's knowledge or control. It went from needing two things (email/pass) to access an account to just one (pass) - same with recovery things (like above). I'm one of the (seemingly few) people who've actually received a bounty from them though. Figured it'd be the min $500, and they offered/sent $1500. I was pretty happy. On Tue, Aug 6, 2013 at 10:15 AM, <[email protected]> wrote: > On Tue, 06 Aug 2013 16:51:39 +0200, Alex said: > > > Nice finding, but how do you know the victims email address? > > If you can't figure out how to social-engineer that information, > you probably need to be in some other business. ;) > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ >
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
