Facebook bug exposes contact information from millions of users
There is no evidence, the company says, that the bug has been exploited maliciously
IDG News Service - A bug on Facebook leaked email addresses and phone numbers provided by some 6 million people on the site to certain other users, the company revealed Friday.
What sparked the problem is a bit complicated. The bug caused some of the information that the social network stores to make friend recommendations to be inadvertently stored in association with people's contact information as part of their Facebook account, the company said Friday on its website.
As a result, if a person were to download an archive of their account through Facebook's Download Your Information (DYI) tool, additional email addresses or telephone numbers for the person's contacts, or other people with whom the user is connected, might have been displayed, Facebook said.
"We've concluded that approximately six million Facebook users had email addresses or telephone numbers shared," the company said.
"This contact information was provided by other people on Facebook and was not necessarily accurate, but was inadvertently included with the contacts of the person using the DYI tool," Facebook explained.
Also, in almost all cases, an email address or telephone number was exposed to only one person, Facebook said. No other types of personal or financial information were included, and only people on Facebook -- not developers or advertisers -- have access to the DYI tool, the company said.
Facebook said the company has no evidence that the bug has been exploited maliciously, and "we have not received complaints from users or seen anomalous behavior on the tool or site to suggest wrongdoing," the company said.
The bug had been live for a year before it was discovered by Facebook's security team last week. Upon confirmation of the bug, the DYI tool was immediately disabled to fix the problem, and it was turned back on the next day after being fixed.
"We'll work doubly hard to make sure nothing like this happens again," the company said.
Facebook is contacting affected users via email.
- Data on the Move = Business on the Move; How Strategic Secure Managed File Transfer Adds Value and Drives Business This whitepaper describes the formal and informal file-sharing methods business employees use to perform their daily functions and explains that, from sending small...
- Gartner Magic Quadrant for Client Management Tools The client management tool market is maturing and evolving to adapt to consumerization, desktop virtualization, and an ongoing need to improve efficiency.
- Audit Ready and Asset Optimized: The Solid Promise of an Intelligent Software Asset Management Solution In this paper Frost & Sullivan examines the benefits of enterprise-grade Software Asset Management solutions, and how these solutions serve as the convergence...
- Pragmatic Endpoint Management: Empowering an SMB Workforce in the Age of Mobility Lacking the time for proper training and education, SMB administrators often resort to taking shortcuts to keep their environment running.This paper discusses the...
- Supercharge Your Web and Mobile App Development with High-Productivity Hybrid Cloud Webinar: Hear from industry experts about the amazing power at the intersection of next-generation web and mobile application development and cloud platforms.
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users? All Internet White Papers | Webcasts