Application security, Vulnerability Management

Instagram asks security researchers to check out ‘Checkout’ feature

Instagram is reportedly recruiting white-hat researchers to test the security of its new Checkout feature, which allows users to buy merchandise from select brands without ever having to leave the social media app.

CNN this week reported that Facebook-owned Instagram is restricting the testing to only those individuals who have submitted high-quality research to its bug bounty program.

Instagram publicly announced Checkout in a March 19 blog post on its "Info Center" web page, noting that "Once your first order is complete, your information will be securely saved for convenience the next time you shop."

Instagram has also previously asserted it does not share payment information with sellers, and maintains sensitive financial information on secured servers, CNN reported.

Meanwhile, in an Aug. 19 blog post, security researcher Philippe Harewood reported discovering a vulnerability FB5, Facebook's fifth major update, that allows potential attackers to remove a user's profile picture.

Bradley Barth

As director of multimedia content strategy at CyberRisk Alliance, Bradley Barth develops content for online conferences, webcasts, podcasts video/multimedia projects — often serving as moderator or host. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.