Facebook Flaw Exposed Photos Belonging To Millions Of Users 

January 3, 2019

Written by wukovits

Recently Facebook fessed up to a bug in their photo API that exposed the photos belonging to nearly seven million of the company’s users to app developers.

The way the photo API is supposed to work is as follows:  When you give an app permission to access your Facebook photos, that app is only supposed to gain access to the ones you’ve posted on your timeline.

The photos you’ve uploaded but have not shared are supposed to be strictly off limits.

Unfortunately, that’s not the case at all.  According to a statement released by the company, some fifteen hundred apps controlled by 876 developers had access to every photo that users of those apps had uploaded to Facebook, whether they were a part of that user’s timeline or not.

The company reports that the bug has now been fixed, but that app developers had access to all photos between September 13th and September 25th of 2018.

The obvious question is, if the company knew about the issue back in September, and they’ve already fixed it, why is it that we’re only hearing about it now?

The company’s explanation is both thin and weak. A Facebook spokesman simply stated that it took time to investigate the matter, including finding out which apps and users were impacted by the bug, and then to build the warnings (including translations into multiple languages) to warn the potentially impacted users.

Be that as it may, the standard protocol for such incidents has been immediate notification, followed by ongoing investigation, and sending out official notices to impacted parties.

Facebook issued a standard, terse apology, but has not offered any additional explanation as to why the disclosure was such a long time coming.  It’s unlikely that we’ll get an explanation beyond the one already given, unsatisfying or not.

This is but the latest in a long stream of similar “incidents” the company has reported on in recent months.  One wonders how many more terse apologies we’ll be seeing in the months ahead.

Used with permission from Article Aggregator

Bayou Tech

We provide solutions for your business. Find out how we can help.

Related Articles

New Graphene Technology May Increase Hard Drive Storage

HDDs are old, well understood technology. They haven't changed much in recent years. In fact, increasingly, people are writing them off, preferring SSDs for their greater speed and smaller size, even though HDDs are less expensive. The clever folks at the University...

Some Amazon Device Features May Have Security Risks

Have you heard of Amazon Sidewalk? If not, it's definitely something you should be aware of. Depending on your point of view, the new feature, which was enabled by default on a wide range of Amazon devices by default on June 8 of this year (2021) is either...

Email Unsubscribe Scam Can Easily Fool Any User

Scammers are increasingly relying on a tried and true bit of social engineering to fool unsuspecting users into unwittingly signing up to receive a flood of additional spam email. They accomplish this by blasting out an email asking recipients if they wish to...

Send us a message

Your message was sent.