[ad_1]
Facebook faces new questions following a report from the specialized portal TechCrunch which took Thursday the public denunciation of a self-proclaimed hacker who would have found a data exposure via a
Facebook has confirmed the flaw by stating that "this could have allowed an attacker to determine the details of a user connected to the platform". According to the social network, the creative application of questionnaires such as "Which Disney Princess are you? He indicated that the problem is solved.
The new charges were revealed by a publication in the blog portal, in which Inti De Ceukelaire, self-described "hacker," wrote the questionnaires created by Social Sweethearts, a German firm that has gained popularity with viral testing, would have collected names, birthdays, photographs and lists of friends of those who have used it. The tool kept this information in a JavaScript file, to which third parties could easily access.
The & hacker & # 39; said that he would have looked for vulnerabilities in the platform after Facebook announced a rewards program on April 10 to find data abuse on the platform, at a time when the company has tried to show the revelations of the Cambridge Analytica scandal.
After badyzing applications that some of his knowledge on Facebook used more frequently, De Ceukelaire decided to make his first quiz and said he discovered that NameTests.com exposed user data to "any third party who asked for it" . "Social Sweethearts has about 120 million monthly users on Facebook.
TechCrunch reported that the" hacker "reported failure. In June, the" hacker "said that he had discovered that NameTests had changed the way it treated users' data to close the leak.
Social Sweethearts, the creator of NameTests, told TechCrunch that there was no evidence that the data personalities were exposed to third parties or that they were misused.
Journalist Natasha Lomas, author of the publication in TechCrunch, said that beyond showing a "disturbingly relaxed" attitude to life The social network, apparently deprived of users, apparently does not manage to "impose its own policy on developers", which could embarrbad them in the light of the new European regulations on confidentiality.
EDUCATION
[ad_2]
Source link
