A design flaw in recent Facebook update FB5, let malicious users remove the profile pictures of other users and set back to the default Facebook profile picture. The vulnerability was discovered by a security researcher Philippe Harewood who had early access to FB5.

Read full article on GBHackers