Facebook Flaw Allowed Thousands Of Developers To Gather Personal Data

5,000 developers were mistakenly allowed to gather information from people’s Facebook profiles after a time limit on their rights had expired, according to BBC News. Apps on Facebook are supposed to be prevented from accessing people’s personal data if the app has not been used for 90 days, but this lock-out has not always worked due to a flaw in how it recorded inactivity. Facebook gave an example of the error in action, explaining that if two Facebook friends had both used an app, and only one was still using it after 90 days, the app might gather personal information from the inactive friend. It also said that the information developers could access was restricted by the permissions users agreed to when they first signed up to the app.

Experts Comments

July 03, 2020
Jake Moore
Cybersecurity Specialist
ESET
Social media effectively acts as a double edged sword. The more personal data you put on Facebook, the more you will potentially gain from it. However, before placing data on an open forum such as social media, users must think twice about their privacy and realize that they could theoretically lose control of their information at some point in time. Posting anything personal such as your birthday, address or your children’s information, means that this can be used against you in the wrong.....Read More
Social media effectively acts as a double edged sword. The more personal data you put on Facebook, the more you will potentially gain from it. However, before placing data on an open forum such as social media, users must think twice about their privacy and realize that they could theoretically lose control of their information at some point in time. Posting anything personal such as your birthday, address or your children’s information, means that this can be used against you in the wrong hands. Developers can be trusted, but if this flaw enabled them to view data behind permissions, it must be assumed that such restricted information is now out there.  Read Less
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.