Abusing HTTP Status Codes to Expose Private InformationWritten 13 years ago by Mike Cardwell Update: Some of the example tests on this page no longer work (I don’t have a Facebook account anymore and the Twitter URL I used went offline). The technique it’s self is still alive and relevant though. When you visit my website, I can automatically and silently determine if you’re logged into Facebook,