Facebook Exposes Employee Data To Terrorists

An anonymous reader writes: The Guardian is reporting that Facebook accidentally exposed the personal information of the moderators that remove terrorist content to the groups that posted that very content. From the article it looks like 6 of them actually had their profiles viewed. From the article, "The security lapse affected more than 1,000 workers across 22 departments at Facebook who used the company's moderation software to review and remove inappropriate content from the platform, including sexual material, hate speech and terrorist propaganda."

What are Facebook's responsibilities here?

responsibilities?

[turkeydance]

we don't need no stinking responsibilities.

That's right.

[Anonymous Coward]

They are one of the three biggest advertising companies on Earth (Google and Yahoo! being one and three respectively) and they are rich and above the law.

See, corporations are people until it comes to criminal prosecution. "Oh, we'll fine them millions! And they just let the stockholders eat it (Ahahahahahah) and the stock goes up because they got off with just the cost of a month's worth of toilet paper.

Re: responsibilities?

[dougdonovan]

facebook = everyones business is everyones business.

Re:

[XXongo]

No question Facebook screwed up badly, exposing the identity of its employees to potential terrorists.

It is worth keeping in mind, though, that ultimately the real culprits here are the terrorists.

Re:

[Bodhammer]

That is just racist. You are not respecting the piece loving, genital mutilating, mass murderers. Off to sensitivity training for you!

Facebook fully liable

[Anonymous Coward]

In my opinion, as Facebook opened these persons to such a risk, they should assume full and complete liability for anything that comes from it.

Re:

[Kergan]

That liability won't be worth squat for the people involved if they get killed.

Re:Ensuring Their Safety

[xxxJonBoyxxx]

"We're sorry we published your name, censoring duty and home address to the Goat Bladder Knitting and IED Club. Please click here to enroll in three free months of credit monitoring..."

Re:

[Anonymous Coward]

We've also improved our privacy options. Uncheck here if you do not want terrorists to be unable to not view your personal details.

Re: Ensuring Their Safety

[TheOuterLinux]

I'm looking, but there's no N$A option either. Is there something else I'm supposed to sign up for? Download? *Panics* DO MY APPS AND API NOT PLEASE YOU MA' LORDSHIP?!!! "100 Hail Micro$ofts and be on your way pleb!" Mark makes a Z motion in the air with his hand.

How much will it take?

[Grishnakh]

How much will it take for people to finally get a clue about how bad Facebook is?

Re:

[Grishnakh]

Considering other corporations are even worse, what is the point of fighting back?

You don't need to "fight back", and other corporations are irrelevant. Facebook is a non-essential service which provides nothing of value. It's just like having a cable TV package, for example (or worse, a package with ESPN). The simple solution is to stop using it and do something better with your time.

Facebook is not an essential utility/service like your water/sewer service, electricity, or even internet service. It's

What planet do you live on exactly?

[s.petry]

Americans have Democratic policies everywhere. From ACA which most American's didn't want to "Sanctuary" Cities and States which ignore and fight against Federal Law and the US Constitution. Gun-Free Zones are a product of Democratic control, Democrats push back against school choice, and have propagated SJWs, BLM, antifa, and other groups who behave both violently and criminally.

Most of us on the R side just want to be left the f&*k alone and want Government to be minimized. Pretty much what we are

Re:

[Zontar The Mindless]

Please don't insult our intelligence by comparing today's elephant posse with the party of Lincoln.

Re:

[s.petry]

Republicans just want to be left alone..

Except for women, who shouldn't be able to make their own medical decisions.

Completely asinine framing of the Abortion debate. Not that you could debate the subject with any degree of intelligence, but there are some good papers and debates out there in case a drive by reads your idiocy. Hint: There is a human growing inside a woman during pregnancy.

Or gays or straight who like butt stuff. The State has an obligation to criminalize that for some reason.

Well, 2 for 2 in attempting to minimize complex issues to a single asinine point. Republicans in general don't care about sexual preferences. The debate has been over much more complex issues, such as as person wanting to force ano

Re:

[computational super]

trying to one-up Uber

Modern western civilization has taught me that you can get away with absolutely anything as long as you make sure to keep appeasing feminists. Keep that one rule in mind, and you're teflon.

Strange Policy

[mfh]

I find it utterly strange that the same profiles that a moderator would use in their official duties would be somehow linked to their own Facebook profile. That seems to me like a huge security oversight. Paid mods should ALWAYS have separate credentials from their own personal stuff. What happens when FB fires someone? They just change their FB acct to non-admin? Seems like a huge problem if there are any rollbacks.

No. You gotta keep shit separated. I get that most forums around typically associate user accts with privs... but that's bad policy if your system is going to be targeted. Better to have secret hidden mod accts that can be audited internally but do not show up externally... and can't be accessed remotely. Remote mod accts should have extra layers of auditing and security as well.

I'm probably preaching to the choir, but FB never seemed like a very talented company, or at best their amoral practices will always be to their disadvantage, as we see here.

Re:

[swillden]

I find it utterly strange that the same profiles that a moderator would use in their official duties would be somehow linked to their own Facebook profile. That seems to me like a huge security oversight.

I'll bet they were linked to their corporate profile, which likely also doubles as the employee directory entry. As such, it probably didn't have truly personal details, like home address or personal phone number, which would only be in HR systems and wouldn't be exposed to other employees. But it would have their complete name, and office location (city), and other tidbits that might be usable to identify them IRL.

The real problem here...

[Anonymous Coward]

Is that the employees even had a personal Facebook account to begin with instead of an Employees Only type of account that doesn't have any personal info on them.

TOS Update

[Anonymous Coward]

It's now prohibited under Facebook's Terms of Service to kill, maim, or place a hit on any member of Facebook's staff.

Violators are subject to having their accounts suspended or deleted without notice.

Oops...

[Anonymous Coward]

Ask Kathy Griffin.

Who is Seth Rich?

To be expected

[evolutionary]

This is what happens when a large amount of something valuable is available from one convenient location. when are people going to stop sending sensitive data to these guys. They send our data to various state police department (and probably federal+ groups as well) who are reportedly using that data for a face recognition system deemed illegal in two states (and the police don't seem to care the state laws make it's use illegal), marketing companies, and probably anyone who will pay Facebook enough. There is no real privacy on Facebook as it was never a priority. When are we all going to learn.

Easy civil action

[manu0601]

This seems an easy civil action. Fault from Facebook is obvious and documented, damages are huge. That should attract a lot of lawyers.

Terrorists?

[bongey]

The FBI?

"Because terrorists"

[munch117]

So, judging by the comments so far, all you have to do is say "terrorists", and then all of slashdot becomes a fan of faceless, unaccountable censorship.

Let's all join hands and create a world where content is filtered by the anonymous minions of a few megacorporations, and you absolutely do not have the right to face your accuser, challenge the decision, or even know the rules by which you are being judged.