A Facebook error exposed unpublished photos of up to 6.8 million users

Facebook has just revealed that a bug in the API photos of its platform gave application developers too much access to images of up to 6.8 million users. "We have solved the problem but, due to this error, some third-party applications may have had access to a larger set of photos than usual," they say in a statement.



This new security breach of the social network headed by Mark Zuckerberg would have been open for twelve days, between September 13 and 25 of 2018. It has affected Facebook users who have used the network login and have granted permission to third-party applications to access their photos.

    "When someone gives permission for an application to access their photos on Facebook, we usually only allow the application to access the photos that people share on their timeline, in this case, the error potentially gave developers access to other photos, like those shared on the Marketplace or Facebook Stories, the error also affected the photos that people upload to Facebook, but decided not to publish them. "

The security breach affected photos that did not get published
Facebook down

As they explain in the text that has announced the serious error, unpublished photos would also have been exposed. These images are those that are uploaded by users to the social network per, once loaded, they are not published.

This may be due to a loss of data connection or simply that, at the last moment, you decided not to proceed with the publication. In these cases, as Facebook explains, they store a copy of that photo so that the user who decides to continue with the publication has it when he returns to the application.

At present, according to the data handled by the social giant, it is estimated that up to 6.8 million users would have been affected by this problem and up to 1,500 applications built by 876 developers. The applications affected by this error were those that Facebook approved to access the photos API and that, as we pointed out before, users had authorized to access their photos. "We regret that this has happened," they maintain.

They assure from Facebook that at the beginning of next week they will implement tools for application developers that will allow them to determine which users of their application could be affected by this error. "We will work with these developers to remove the photos of the affected users," they say, adding that they will notify the people potentially affected by this error through an alert in the form of a notification that will be sent to the assistance center to learn more details.

Comments

Post a Comment

Popular posts from this blog

'Bohemian Rhapsody' by Queen is already the most reproduced song of the 20th century on the Internet

Image
Universal Music Group has revealed that 'Bohemian Rhapsody' has just become the song of the last century that has been heard more times in streaming, surpassing the 1,600 million reproductions.   The acclaimed song of the iconic band Queen recorded more than 40 years ago and part of the Hall of Fame of the Grammys has taken the place of another classic, but from the 90s, 'Smell Like Teen Spirit' by Nirvana. The number of reproductions counts both those made in Spotify and Apple Music and other streaming music services, as well as the reproductions that the video has on YouTube. In Spotify the song is about to reach 600 million views and on YouTube the video has just over 750 million. One of the reasons why the song had a boost in popularity recently have to do with the biopic about Freddy Mercury and the band that premiered recently, titled in the same way as the song: Bohemian Rhapsody. While other twentieth-century songs like Nirvana's 'Smell l...
Read more

"Malicious Memes", how a new type of malware is taking advantage of hidden code in Twitter images

Image
Trend Micro security researchers have identified a new threat that they have called "malicious memes." Basically, it's a new type of malware that receives its code instructions hidden in memes posted on Twitter. Cybercriminals exploiting this use an old technique (stenography) to hide malicious code in images and evade security, the novelty here is that they are using the technique in images that are shared in the social network. Now, the malware itself is not downloaded from Twitter and the mechanism used to infect users, or where it comes from, or the intentions behind it has not yet been identified. It is a remote access Trojan that when infecting the computer can take screenshots and steal other system data that it then sends to its control server. It seems to be an experiment The authors of the malware identified by Trend Micro published two tweets with malicious memes last October through a Twitter account created in 2017. The memes contained an embedded command...
Read more

JQBX, listen to music with your friends in private or public groups where everyone can be the DJ

Image
JQBX (sounds like "Jukebox") has just become one of my favorite applications this week, if I had discovered it before maybe it would have gone to one of our best lists of the year. If you are a music lover and you have at least a small group of friends with whom you enjoy sharing your discoveries, you will almost certainly love it. Those who once used the deceased Turntable.fm probably find something familiar, basically brings that concept to the Spotify era, and Spotify plays an important role with JQBX, since you need a premium account of that service to enjoy the app. Since we have established that only Spotify Premium users can enjoy this little gem, if you are one of them, keep reading and failing, we feel in your soul that it is not integrated with any other streaming music service. Join or create your own music room, DJ or let some friend or stranger be it Jqbx Genbeta App interface in macOS when you're inside a room JQBX is completely free and integrates 100% ...
Read more