| ||Thread Tools|
|24th June 2013, 12:48||#1|
Join Date: May 2010
Facebook security bug exposed 6 million users' personal information
Today, Facebook announced a security bug that compromised the personal account information of six million users. In a post on the Facebook Security page, the site's White Hat team explained that some of the information the site uses to deliver friend recommendations was "inadvertently stored with people's contact information as part of their account on Facebook." When users downloaded an archive of their account via the DYI (download your information) tool, some were apparently given access to additional contact info for friends and even friends of friends. The post continues:
We've concluded that approximately 6 million Facebook users had email addresses or telephone numbers shared. There were other email addresses or telephone numbers included in the downloads, but they were not connected to any Facebook users or even names of individuals. For almost all of the email addresses or telephone numbers impacted, each individual email address or telephone number was only included in a download once or twice. This means, in almost all cases, an email address or telephone number was only exposed to one person. Additionally, no other types of personal or financial information were included and only people on Facebook - not developers or advertisers - have access to the DYI tool.
Facebook says it's temporarily disabled the DYI tool to fix the breach. We've reached out to the site for further comment; for now, read the official statement via the source link below.
Update: Facebook has responded to our inquiries and stated that while the bug was discovered earlier this month, "it had been live since last year." They immediately disabled the tool, fixed the bug and reenabled it within 24 hours of the bug's discovery. The bug was reported to them through a White Hat program for external security researchers.
|Thread||Thread Starter||Forum||Replies||Last Post|
|PayPal's Chief Information Security Officer predicts the end of the password||Stefan Mileschin||WebNews||0||13th May 2013 09:11|
|SkyDrive celebrates 250 million users||Stefan Mileschin||WebNews||0||7th May 2013 09:20|
|Facebook losing UK users||Stefan Mileschin||WebNews||0||15th January 2013 08:02|
|Nearly 20 million pieces of private information illegally traded online||Stefan Mileschin||WebNews||0||3rd October 2012 07:51|
|Apple: 26 million copies of Lion OS sold, 66 million Mac users||Stefan Mileschin||WebNews||0||12th June 2012 07:48|
|1 in 10 Used Hard Drives Contain Personal Information||Stefan Mileschin||WebNews||0||26th April 2012 09:37|
|Facebook Has Upgraded Its "Download Your Information" Feature||Stefan Mileschin||WebNews||0||13th April 2012 08:04|
|Apple vs. Facebook: Why Users Are The Losers||Stefan Mileschin||WebNews||0||23rd February 2012 08:53|
|Google+ Said to Have Passed 62 Million Users||Stefan Mileschin||WebNews||0||29th December 2011 10:54|
|Security Flaw Links BitTorrent Users to Skype Accounts||Stefan Mileschin||WebNews||0||21st October 2011 09:06|