Newsletters
News & Information for Technology Purchasers NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Please click for more information, or scroll down to pass the ad, or Close Ad.
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
World Wide Web
Fiercely productive scanners
Average Rating:
Rate this article:  
Facebook New Year
Facebook New Year's Message-App Privacy Glitch Caught Early

By Jennifer LeClaire
December 31, 2012 11:17AM

    Bookmark and Share
"I don't know who these people are, but you can see it puts my profile pic next to it, as if I have sent the message," said Jack Jenkins, who discovered the Facebook message flaw. "It shouldn't be possible to do this, as these are not generic and are people's personal images. A very bad part of it all is I think that you can actually DELETE other people's messages."
 



For all the privacy flaps Facebook faced in 2012, the social media giant almost started 2013 with a privacy bang of New Year's proportions. Facebook narrowly escaped what would have left the company red-faced on Jan. 1.

Specifically, Facebook built a messaging feature for New Year's Day. The feature lets users pre-write messages to friends and family and have them automatically distributed as soon as the clock ticks midnight and the New Year is official. It's a neat feature in concept, but in reality the messages would not have been private.

"By simple manipulation of the ID at the end of the URL of a sent message on the Facebook Stories site, you are able to view other peoples Happy New Year messages. At least I was when I edited the ID for myself," wrote Jack Jenkins, who discovered the flaw, in a blog post. "It is, you may say, a pretty harmless flaw, as they tend to be generic messages and you can't see who sent them (it shows your profile pic next to the message, as if you've sent it). However you can see the names of the recipients of the message."

Privacy Faux Pas

Jenkins pointed out that some messages do contain a photo. One such message he saw contained a photo of a father and their child, another a family photo, another was a personally written message. He offered screen shots as proof.

"I don't know who these people are, but you can see it puts my profile pic next to it, as if I have sent the message. It shouldn't be possible to do this, as these are not generic and are people's personal images," Jenkins said. "A very bad part of it all is I think that you can actually DELETE other people's messages, which I have tested for myself on a single message as I thought that it would say access denied."

Jenkins went on to describe how to delete the messages. Facebook got the issue fixed Monday morning, but it is still reportedly not working in some parts of the world.

Zuckerberg's Sister Angered

Facebook already was ending the year with a privacy-issue bang, though it was not all Facebook's fault. Last week, Facebook CEO Mark Zuckerberg's older sister, Randi, wasn't too happy when someone outside her inner circle saw -- and then tweeted to 40,000 people -- a family photo she shared on her brother's social media site.

The photo shows her sisters using Facebook's new Poke app, which is similar to the popular sexting app Snapchat, on their smartphones. In the photo, Mark Zuckerberg was looking on with a strange look on his face.

"Not sure where you got this photo," Randi tweeted at Callie Schweitzer, the director of marketing and special projects at Vox Media who tweeted the image. "I posted it to friends only on FB. You reposting it to Twitter is way uncool. I would hate for a private photo of mine to be public and would never want to do same to others."

As it turns out, when you tag people in a photo, by default those images can also be seen by any of that person's friends. You can change that setting by creating a "Custom" option under photo sharing. It's not confusing, but it's not second nature, either.
 

Tell Us What You Think
Comment:

Name:



Your Next Generation Data Center Is Here! Vblock™ Systems: the world's most advanced converged infrastructure are built on the Cisco Unified Computing System with Intel® Xeon® processors. Vblock™ Systems deliver extraordinary time to market, ROI and TCO, and flexibility to meet your continually changing demands with 5X faster deployment, 96% less downtime, and 1/2 the cost. Click here to learn more.


 World Wide Web
1.   Heartbleed Exploit Could Cost Millions
2.   'Like' Cheerios, Give Up Right To Sue
3.   Google Earnings, Sales Disappoint
4.   Tech Giant Alibaba Plans U.S. IPO
5.   Google Street View Unravels CAPTCHAs


advertisement
Heartbleed Exploit Could Cost Millions
But it could have been prevented.
Average Rating:
Don't Reset Passwords for Heartbleed?
Added caution needed to ensure security.
Average Rating:
Internet Devices Lure Hackers
Mundane devices end up in online crime.
Average Rating:
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Heartbleed Could Cost Millions, Could Have Been Prevented
Early estimates of Heartbleed’s cost to enterprises are running in the millions. The reason: revoking all the SSL certificates the bug exposed will come at a very hefty price. Some say it all could have been avoided.
 
Michaels Says Nearly 3M Credit, Debit Cards Breached
Arts and crafts retail giant Michaels Stores has confirmed that a data breach at its POS terminals from May 2013 to Jan. 2014 may have exposed nearly 3 million customer credit and debit cards.
 
Google's Street View Software Unravels CAPTCHAs
The latest software Google uses for its Street View cars to read street numbers in images for Google Maps works so well that it also solves CAPTCHAs, those puzzles designed to defeat bots.
 

Enterprise Hardware Spotlight
Vaio Fit 11A Battery Danger Forces Recall by Sony
Using a Sony Vaio Fit 11A laptop? It's time to send it back to Sony. In fact, Sony is encouraging people to stop using the laptop after several reports of its Panasonic battery overheating.
 
Continued Drop in Global PC Shipments Slows
Worldwide shipments of PCs fell during the first three months of the year, but the global slump in PC demand may be easing, with a considerable slowdown from last year's drops.
 
Google Glass Finds a Home in Medical Education, Practice
The innovative headpiece may find its niche in markets where hands-free access to data can be a big advantage. Glass experiments for doctors are already under way, with some promising results.
 

Mobile Technology Spotlight
Review: Siri-Like Cortana Fills Windows Phone Gap
With the new Cortana virtual assistant, Windows catches up with Apple's iOS and Google's Android in a major way, taking some of the best parts of Apple's and Google's virtual assistants, with new tools too.
 
With Galaxy S5, Samsung Proves Less Can Be More
Samsung has produced the most formidable rival yet to the iPhone 5s: the Galaxy S5. The device is the fifth edition of the company's successful line of Galaxy S smartphones, and shows less can be more.
 
Facebook Rolls Out Potentially Intrusive Location-Sharing
Looking for friends? Facebook users in the U.S. will soon be able to see which of their friends are nearby, using a smartphone's GPS. Could be a cool feature in some cases, or way too much information.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | Small Business | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.