NEW YORK: Facebook’s privacy controls have broken down yet again, this time through a software flaw affecting nearly 7 million users who had photos exposed to a much wider audience than intended.
The bug disclosed Friday gave hundreds of apps unauthorized access to photos that could in theory include images that would embarrass some of the affected users. They also included photos people may have uploaded but hadn’t yet posted, perhaps because they had changed their mind.
It’s not yet known whether anyone actually saw the photos, but the revelation of the now-fixed problem served as another reminder of just how much data Facebook has on its 2.27 billion users, as well has how frequently these slip-ups are recurring.
The bug is the latest in a series of privacy lapses that continue to crop up, despite Facebook’s repeated pledges to batten down its hatches and do a better job preventing unauthorized access to the pictures, thoughts and other personal information its users intend so share only with friends and family.
In general, when people grant permission for a third-party app to access their photos, they are sharing all the photos on their Facebook page, regardless of privacy settings meant to limit a photo to small circles such as family. The bug potentially gave developers access to even more photos, such as those shared on separate Marketplace and Facebook Stories features, as well as photos that weren’t actually posted.
Facebook said the users’ photos may have been exposed for 12 days in September. The company said the bug has been fixed.
The company declined to say how many of the affected users are from Europe, where stricter privacy laws took effect in May and could subject companies to fines. Facebook said it has notified the Irish Data Protection Commission of the breach.
The problem comes in a year fraught with privacy scandals and other problems for the world’s biggest social network.
Revelations that the data-mining firm Cambridge Analytica improperly accessed data from as many as 87 million users led to congressional hearings and changes in what sorts of data Facebook lets outside developers access. In June, a bug affecting privacy settings led some users to post publicly by default regardless of their previous settings. This bug affected as many as 14 million users over several days in May.
With each breakdown, Facebook risks losing credibility with both its audience and the advertisers whose spending generates most of the company’s revenue.
“It’s like they keep getting these chinks in the armor that is causing this trust deficit,” said Michael Priem, CEO of Modern Impact, which places ads for a variety of major brands.
Although Facebook doesn’t appear to be losing a lot of users, Priem said some advertisers have been seeing data indicating that people are spending less time on the social network. That’s raising concerns about whether the privacy breakdowns and problems with misinformation being spread on the services are taking a toll.
But it’s difficult to know how much Facebook’s recent wave of headaches has been affecting the service because its growth, particularly among younger people, had been slowing even before the problems began to crop up, said Nate Elliott, an analyst with the research firm Nineteen Insights.
Advertisers are unlikely to curtail their spending significantly as long as Facebook is able to maintain the current size of its audience, Elliott said. So far there has been little evidence a significant percentage of the users are worried enough about privacy to get off the service.
“Even if people don’t trust Facebook, as long as the value that the service provides is worth more than the cost of the privacy violations, then that may be a trade-off most people are willing to make,” Elliott said.
On Thursday, to counter the bad rap it’s gotten around privacy, Facebook hosted a one-day “pop-up” to talk to users about their settings and whatever else may be on their mind. Chief Privacy Officer Erin Egan gave Facebook’s work on privacy a “B” when asked by a reporter for a grade. By 2019, she said she hopes the improvements will result in an “A.”
Privacy experts might call it grade inflation. In any case, the company has its work cut out before it makes the top grade. The company has had to increase how much it spends on privacy and security, which put a dent in its bottom line and in August contributed to a stock price plunge.
Bug may have exposed photos from 7M Facebook users
Bug may have exposed photos from 7M Facebook users
- Facebook disclosed a photo glitch, saying it allowed some 1,500 software apps to access private photos for 12 days ending Sept. 25.
- An Irish regulator said it was investigating Facebook following the company's disclosure that a bug may has exposed millions of private photos, the latest in a series of privacy glitches
Nigeria signals more strikes likely in ‘joint’ US operations
- Nigeria on Friday signalled more strikes against jihadist groups were expected after a Christmas Day bombardment by US forces against militants in the north of the country
LAGOS: Nigeria on Friday signalled more strikes against jihadist groups were expected after a Christmas Day bombardment by US forces against militants in the north of the country.
The west African country faces multiple interlinked security crises in its north, where jihadists have been waging an insurgency in the northeast since 2009 and armed “bandit” gangs raid villages and stage kidnappings in the northwest.
The US strikes come after Abuja and Washington were locked in a diplomatic dispute over what Trump characterised as the mass killing of Christians amid Nigeria’s myriad armed conflicts.
Washington’s framing of the violence as amounting to Christian “persecution” is rejected by the Nigerian government and independent analysts, but has nonetheless resulted in increased security coordination.
“It’s Nigeria that provided the intelligence,” the country’s foreign minister, Yusuf Tuggar, told broadcaster Channels TV, saying he was on the phone with US State Secretary Marco Rubio ahead of the bombardment.
Asked if there would be more strikes, Tuggar said: “It is an ongoing thing, and we are working with the US. We are working with other countries as well.”
Targets unclear
The Department of Defense’s US Africa Command, using an acronym for the Daesh group, said “multiple Daesh terrorists” were killed in an attack in the northwestern state of Sokoto.
US defense officials later posted video of what appeared to be the nighttime launch of a missile from the deck of a battleship flying the US flag.
Which of Nigeria’s myriad armed groups were targeted remains unclear.
Nigeria’s jihadist groups are mostly concentrated in the northeast of the country, but have made inroads into the northwest.
Researchers have recently linked some members from an armed group known as Lakurawa — the main jihadist group located in Sokoto State — to Islamic State Sahel Province (ISSP), which is mostly active in neighboring Niger and Mali.
Other analysts have disputed those links, though research on Lakurawa is complicated as the term has been used to describe various armed fighters in the northwest.
Those described as Lakurawa also reportedly have links to Al-Qaeda affiliated group for the Support of Islam and Muslims (JNIM), a rival group to ISSP.
While Abuja has welcomed the strikes, “I think Trump would not have accepted a ‘No’ from Nigeria,” said Malik Samuel, an Abuja-based researcher for Good Governance Africa, an NGO.
Amid the diplomatic pressure, Nigerian authorities are keen to be seen as cooperating with the US, Samuel told AFP, even though “both the perpetrators and the victims in the northwest are overwhelmingly Muslim.”
Tuggar said that Nigerian President Bola Tinubu “gave the go-ahead” for the strikes.
The foreign minister added: “It must be made clear that it is a joint operation, and it is not targeting any religion nor simply in the name of one religion or the other.”
