Facebook page hijack 'is simple'

Brand owners are being warned to protect their Facebook pages after online security firm Sophos revealed a new flaw which, it claims, makes it simple to hijack pages and then flood them with damaging posts.
The company has posted a video on YouTube to show just how easy it is.
Basically, once a creator of the page appoints someone as an administrator to their page, that person can then remove the creator’s admin privileges.
Facebook terms and conditions clearly state that “the original creator of the Page may never be removed by other Page admins”. But, according to Sophos’ Naked Security report, it is very easy for newly appointed admins to do so.
“As you can see in the following video, it’s easier to hijack a Facebook page than you would expect, because of sloppy security from the social network,” the report says. “The question is – will Facebook do anything about it?” it asked.
Security issues and bugs are so common on Facebook that the social media company recently started offering rewards of up to $5,000 to individuals who can help spot flaws.
According to a blog post by Facebook chief security officer Joe Sullivan, researchers in 16 different countries have collected the bounties. One person has already received a total of $7,000 for flagging six different issues.