Facebook can’t seem to keep their users’ information private, once again

Facebook can’t seem to keep their users’ information private, once again

While Facebook hadn't exposed any user passwords or other confidential information to these app developers, it does show that they are sending this data in an unencrypted manner to these developers rather than making use of some sort of private key encryption to allow app developers to work with this data.

Hold on a minute, 540m users is a big chunk of Facebook's 2.3bn global audience. The data may have sat there unprotected on Amazon's cloud for five years.

It is now but it wasn't up until yesterday.

UpGuard stated the data was stored in Amazon's cloud service without password protection and could easily be accessed by outsiders.

While Facebook has recently made announcements that they will take a privacy-first approach to user data, this seems to be more a response to avoiding Government oversight than genuine care for their users.

What's Facebook doing about it?

"Companies like Amazon Web Services push a narrative of a shared responsibility model, where they're responsible for the hardware", he said. UpGuard said it emailed Cultura Colectiva about the issue on January 10 and 14.

UpGuard said it alerted Cultura Colectiva and Amazon about the breaches from Cultura Colectiva in January, but no action was taken until Wednesday morning.

How much data do these buckets contain?
Despite lacking the scale of the Cultura Colectiva leak, it involved the exposure of 22,000 passwords in plaintext, which would obviously be bad if those affected used those passwords for anything else.

According to UpGuard, both exposed datasets contain data about Facebook users, describing their interests, relationships, and interactions.

UpGuard, in its blog post also claims that Facebook can not mitigate the extent of the damage as it has spread far beyond its controls. For app developers on Facebook, part of the platform's appeal is access to some slice of the data generated by and about Facebook users.

Well, it's hard to say.

While you're at it, consider clicking on Use Two-Factor Authentication. Once your data is out there, there's really no getting it back.

UpGuard's blog post didn't mention how many users may have been ensnared in the Cultura Colectiva leak.

The exposure of Facebook's data also illustrated a hard reality: Once accessed or obtained, personal data can live forever. At The Pool's database disappeared while Upguard was researching, the firm said.

Facebook is having a awful, horrible, no good, very bad year.

Facebook has said the data was initially collected by a professor for academic purposes in line with its rules, CNN reported.

In October a year ago, Facebook also revealed millions of email addresses, phone numbers and other personal user information were compromised during a security breach, affecting as many as 50 million accounts.

In brief: Another privacy-related Facebook scandal has been uncovered.

Time to get to work, Zuck.

Related Articles