New data leak reaches 120 million Facebook users

Uncategorized



[ad_1]

NameTests application has left the personal data of vulnerable users, said researcher

access_time

June 28, 2018, 6:15 pm – Posted on June 28, 2018, 2:26 pm

<img src = "https: //abrilexame. files.wordpress.com/2017/11/facebook22331.jpeg "clbad =" abril-image optimized lazyload "abril-data-id =" 2983344 "sizes =" (min-width: 991px) 680px, (max-width: 420px ) 420px, (max-width: 360px) 360px, "srcset =" https://abrilexame.files.wordpress.com/2017/11/facebook22331.jpeg?quality=70&strip=info&resize=680,453 680w, https: //abrilexame .files.wordpress.com / 2017/11 / facebook22331.jpeg? quality = 70 & strip = all & resize = 420,280 420w, https://abrilexame.files.wordpress.com/2017/11/facebook22331.jpeg?quality=70&strip=all&resize= 360,240 360w, "alt =" Facebook application is viewed on smartphone "title =" Facebook application is viewed on smartphone "

(Thomas White / Reuters)

São Paulo – A site called NameTests, which offers an application with several tests with accounts related to Facebook data leaked from 120 million people who had accounts of social network The case arrives in a year where the company has already faced a major leak of personal information, sold to the political marketing company Cambridge Analytica Donald Trump current president of the United States .

The failure was revealed by the researcher Inti De Ceukelaire and was detailed, and the problem was found while Ceukelaire was working on a Facebook program project that rewards people who discover cases of "bad luck". misuse of personal data by developers of social networking applications. This initiative emerged after the Cambridge Analytica case.

NameTests displayed information in JavaScript and could be collected by people with knowledge in this programming language. Data such as photos, publications, lists of friends and private information can be viewed by individuals or companies without the consent of their owners.

After Facebook was notified on April 22, NameTestes.com changed the way it treats your social networking data and solved the leakage problem. Facebook has even cleaned up the residual data that could still allow excessive sharing of data. This happened because the site does not offer a way to cancel the Facebook connection.

The $ 4,000 reward was not paid to the researcher.

Ceukelaire said that it is necessary to improve the security of personal data of Facebook users and web services like these and said to have mixed feelings about how

The German company behind the website NameTests.com Social Sweethearts reported in a statement to TechCrunch that user safety is taking seriously and taking steps for new risks do not exist in the [19659008]

Facebook has published an official statement on the page of its work program

The researcher has recorded the video flaw, which you can look at below.

Rewards for bugs that allow you to explore personal data on your social network:

After contacting EXAME Facebook Brazil also published a statement on the case, which can be read as:

"A researcher drew our attention to a problem on the nametests.com site through our Data Abuse Bounty program, which we launched in April to encourage denunciations involving Facebook data.We are working with nametests.com to address the vulnerability on their site, which was completed in June, "said Ime Archibong, vice president of Facebook product partnerships.

(Db) = d.getElementById (id)) {var js = d.createElement ("script"), ref = d.getElementsByTagName ("script") [0]; js.id = id, js.async = true, js.src = "https: / / connect.facebook.net / en_br /all.js", ref.parentNode.insertBefore (js, ref)}} ) (document) [ad_2]
Source link

Powered by https://naaju.com/brazil | Designed by Naaju
© Copyright 2024, All Rights Reserved