Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Facebook Social Networks Privacy

Facebook Says A Bug May Have Exposed The Unposted Photos Of Millions Of Users (buzzfeednews.com) 51

A day after hosting a pop-up store in New York City's Bryant Park to explain how privacy is the "foundation of the company," Facebook disclosed that a security flaw potentially exposed the public and private photos of as many as 6.8 million users to developers. From a report: On Friday, the Menlo Park, California-based company said in a blog post that it discovered a bug in late September that gave third-party developers the ability to access users' photos, including those that had been uploaded to Facebook's servers but not publicly shared on any of its services. The security flaw, which exposed photos for 12 days between Sept. 13 and Sept. 25, affected up to 1,500 apps from 876 developers, according to Facebook.

"We're sorry this happened," Facebook said in the post. "Early next week we will be rolling out tools for app developers that will allow them to determine which people using their app might be impacted by this bug. We will be working with those developers to delete the photos from impacted users." Facebook has not yet responded to questions about whether company representatives staffing its privacy pop-ups yesterday were aware of this security flaw as they were meeting with reporters and customers to discuss privacy.
Further reading: Facebook's lead EU regulator opens probe into data breach.
This discussion has been archived. No new comments can be posted.

Facebook Says A Bug May Have Exposed The Unposted Photos Of Millions Of Users

Comments Filter:
  • by tmshort ( 1097127 ) on Friday December 14, 2018 @01:09PM (#57804234)

    Don't post it to the internet!

    • This.
    • by SuperKendall ( 25149 ) on Friday December 14, 2018 @01:54PM (#57804494)

      The thing is, these were images that were not technically posted.

      It's interesting because Flickr has a feature that makes me wonder, where you can keep your whole camera roll uploaded - it's not made public, just stored.

      Given this Facebook breach, keeping private photos like that on Flickr seems like it may be a bad idea as well... if you have anything you would mind being leaked anyway.

      I wonder at what point private photo leaks will significantly start impacting politics (maybe they are already).

    • Comment removed based on user account deletion
    • Don't post it to the internet!

      Let's not lose sight of the fact that it's not "the internet" that completely screwed the pooch here, it is *specifically* Facebook, and their long history of leaks, "oopses", non-apologies, etc is going to go on because their whole business model is premised on gathering and selling private data, and they have even less decency than most.

      My version of this advice would be "Choose a much better partner than Facebook in your quest for control over your data."

  • Is it just me as the perennial skeptic, or does it almost seem like facebook has a leak or a revelation about something way too often for it to be accidental. It's almost like they're "accidentally on purpose" doing things so that they stay in the news and people don't forget about them.

    No news is bad news right? Let's leak some photos so we can patch the bug next week and stay in the news. They wouldn't do that right? Or would they?

    • Hi, we're very sorry about having a leak or a revelation about something way too often for it to be accidental. We promise we'll do better in the future. Starting this week, we'll be rolling out new tools for developers to have less leaks or revelations about something too often for it to be accidental.
    • Journalists should follow the money, for people looking to sell fb short, or waiting for it to drop as a buying opportunity.

      I first realized this when, the same week Taser went public, suddenly there was a big story about tasers killing people.

    • by rtb61 ( 674572 )

      This is worse story that Facebook is trying to make it look. Those private photos, could be exceedingly private, as in personally pornographic in nature. There are laws against publishing explicit personal photos of inviduals, Facebook has factually broken those laws and should face full criminal penalties.

      Remember when all of a sudden a series of web sites banned porn not long back, guess why the panic. Well at what age do females start to feel the urge for expensive clothing, makeup, jewellery and of cou

  • by Anonymous Coward

    Oh darn. Oopsie!! Such accidental!

  • by Anonymous Coward

    I'm sure it was just a bug Facebook. Their all bugs aren't they? So glad I decided to part ways with Facebook, probably should have never signed up to begin with.

    • I tried to, but I ended up with BLCM and it was a total dud.

      Reminds me of the time my friend recommended Cysco to her grandma, and she bought Sysco instead.

      Except, Sysco was a good buy.

  • You know, it's proper etiquette to provide a torrent link for stories like these. j/k

    I'm almost becoming inured to these data leak stories. I use Facebook, but I would never post photos that I would care about being made public... that's why I put them up there. If anyone is interested in looking at some big, doughy white guy, and the food he cooks, more power to them. I figured out 25+ years ago that I simply wouldn't post anything online that I wouldn't want to see on the front page of something lik

  • by Anonymous Coward

    Facebook increasingly resembles some amateur web site (filled w home pages) run by beginners who overstate their technical skills

    • by TWX ( 665546 )

      A little secret for you, the bulk of IT is run by beginners who not only overstate their technical skills, they also personally overvalue their technical skills. In short, they don't really understand how poor their skills are.

      Now consider that as a basic starting point for a developed platform, then factor it in with the software running on that platform, for the higher-level protocols that let that software communicate, and for the staff that maintain the systems, and one can see why breaches are so damn

    • It is what Geocities would have been if they implemented chat.

  • Unposted messages and photos are used to share information privately as a sort of ad-hoc drop box.

    People share log-ins and save things as draft for the party to read. Some under the impression it is really private. I was shocked to see some General commanding our troops in Afghanistan using it to share notes with some lady he was having an affair with. Talk about blackmail vulnerability!

    So impact of this bug is going to be quite big.

  • by Puls4r ( 724907 ) on Friday December 14, 2018 @02:08PM (#57804550)
    https://www.independent.co.uk/... [independent.co.uk]

    So they want us to upload nude photos to stop revenge porn, then they allow access to all these other photos. Ho boy.
  • Best joke I've hear all week! Oh, you mean monetization of privacy; ok, that makes more sense.
  • ... the worse Facebook looks.
  • by Anonymous Coward

    RE: privacy is the "foundation of the company"

    Are they so accustomed to lying that they can keep a straight face now when they say things like this?
    Facebook is the antonym of Privacy! They've always been the last to adopt any security practices, and only when forced.

  • Does Facebook's genie-stuffing operation also extend to Facebook partners whose own security melted down while they were in possession of illicit private-image contraband (and their partner's partners, too, et al and sundry)?

    If so, they might want to maintain the CDC on a warm and cozy legal retainer (and the CDC might want to base itself in a larger home city—there are some things Atlantis just can't do).

  • They mean "did."
  • Hmmm... Slashdot. News for Nerds...

    Wait. Facebook lacking privacy of users' info?

    This isn't NEWS! It's SOP.

"We don't care. We don't have to. We're the Phone Company."

Working...