|
|
|
|
|
|
by Rajiv_N
4525 days ago
|
|
|
Can some of the risk be mitigated by sending the user an email to confirm the connection? If the user has a verified email address on file before the connection is attempted, the facebook profile information (in this case the information of the attacker) could be sent to them asking them to confirm the connection. |
|
|