Facebook has notified 6.8 million users that, due to a bug, the company allowed its third-party developers to access all the users' photos, including those marked as private.
Facebook says that the bug was active for two weeks in September, but it is only notifying users of this now (you can check if your photos were exposed here).
The GDPR requires Facebook to notify users of breaches within 72 hours. Facebook waited three months. They say this doesn't violate the GDPR.
Europe’s General Data Protection Regulation, which went into effect earlier this year, gives companies 72 hours to notify the authorities of a breach. It’s been well over 72 days since Facebook first spotted the Photos API issue.
That doesn’t necessarily mean the company skirted the rules, though. Facebook argues that it needed that time to investigate whether the incident qualified as a breach under GDPR in the first place, and that it told the appropriate authorities within 72 hours of making that determination. Similarly, Facebook says it took so long to notify affected users because it needed time to identify and contact developers, and to build a “meaningful way” to notify users that they’d failed to protect their data. Given the number of times Facebook has had to do so this year, you’d think they’d have it down by now.
Facebook Exposed 6.8 Million Users' Photos to Cap Off a Terrible 2018 [Brian Barrett/Wired]
(Image: JD Lasica, Cryteria CC-BY)
In 2011, the US Federal Trade Commission put Facebook under consent decree after the company "deceived consumers by telling them they could keep their information on Facebook private, and then repeatedly [allowed] it to be shared and made public."
Last week, Propublica revealed the existence of "I'm 10-15", a secret Facebook group for current and former Customs and Border Protection employees -- a group with 9,500 members, while CBP's total workforce numbers 58,000 -- where it was commons for members to share violent, racist, sexist, misogynist, rape-y memes, including some that threatened and disparaged […]
In Social Connectedness in Urban Areas (Sci-Hub mirror), a group of business and public policy researchers from Facebook, NYU and Princeton study anonymized, fine-grained location data from Facebook users who did not disable their location history, and find that the likelihood that New Yorkers will remain friends is well correlated with the ease of commuting […]
They might be the shiny new thing, but AirPods aren’t for everybody. Maybe you’re looking for a new sound or you understandably lost those tiny buds during a brisk run. If so, here’s 10 headphones and earbuds that break out of the Apple mode with a return to quality and wearability. Klipsch R5 Bluetooth Neckband […]
When it comes to passwords, there’s no such thing as paranoia. You want them secure and complex, and you definitely don’t want to repeat them on all your accounts. The trouble is, the internet seems to keep growing. And so do those accounts. Just one lockout from an important email or banking site is enough […]
With the rising temperatures on tap this summer, the climate is going to be a frequent topic of conversation, and those conversations won’t be happy ones. Luckily, there’s a way to do a little climate change of your own – in a safe and sustainable way. When it comes to personal air conditioners, EvaPolar is […]