Symantec , a security department company , has found that third political party Facebook apps have accidentally had entree to Facebook users ’ account for years . Specifically , they could see your visibility , photographs , chat and also have the ability to station messages and mine personal information .
Um , that ’s not unspoiled at all . Luckily though , it seems like the third party apps were n’t even aware they had access to all this data . But how the frak did this chance ?
Symantec discovered that “ Facebook IFRAME program unwittingly leaked access token to third party like advertisers or analytic platforms ” . Symantec term approach tokens as a sort of ‘ free key ’ given to Facebook apps to get the app do sure thing ( register your wall , access visibility , etc ) .
The problem was that Facebook leak out the admission token “ by sending a HTTP request bear the access tokens in the universal resource locator to the coating host . ” These apps would then unwittingly exit on the URL , which contained user access tokens , to advertisers . Which means people you do n’t need to find oneself out things about you , could have easily found out things about you .
Facebook , when give notice by Symantec , has fixed the problem and Douglas Purdy , director of developer relations said :
We appreciate Symantec raising this military issue and we worked with them to address it immediately . regrettably , their resulting write up has some inaccuracies . Specifically , we ’ve conducted a thorough investigation which reveal no evidence of this return ensue in a user ’s private information being shared with unauthorised third party . In addition , this report ignores the contractual obligations of advertisers and developers which prohibit them from share substance abuser information in a way that outrage our policies .
Seems like Facebook evade a humungous sized heater there . If you still feel unsafe , it would n’t smart to change your password as that will kill off any of those remaining access tokens tie to your story . [ SymantecviaThe Next Web ]
FacebookPrivacySecurity
Daily Newsletter
Get the respectable technical school , science , and culture news in your inbox daily .
news program from the time to come , deliver to your present .
You May Also Like
