A critical Facebook flaw exposed email address for any account, the discovery was made by Stephen Sclafani, security researcher and founder of PlayToWin. Facebook users have to provide a valid email address when sign up to the popular social network, the email used becomes the users primary email address. A hacker can retrieve email address of all Facebook profiles simple writing an automated script to grab all email addresses of billions of Facebook users. A bounty of $3,500 was rewarded as Stephen as part of their Bug Bounty program.”]

