Control your infoPieter posted in "Groups & pages". 7 years, 4 months ago
Control your info (link) is an anonymous operation raising awareness for a major flaw in Facebook Groups that enables anyone to register as a group admin after the previous administrator leaves the group. And like we warned months ago, an admin can change the group’s name to anything he wants without group members receiving any notification. In addition, group ownership can be abused to send spam to its members.
Open groups can easily be discovered via Google. Once you join them, you’ll be given the choice to become an admin too.
The flaw by design has been exploited many times in the past, but –as a non-profit project “for a good cause”– Control your info has hijacked about 300 unadministered groups and changed their names to “Control your info” in order to point out the vulnerability on a larger scale. But if Facebook will acknowledge the flaw is doubtful, especially now that they’ve deleted the project’s fan page.