Facebook Flaw Exposed Private Photos 201
Velcroman1 writes "A security hole in Facebook allowed almost anyone to see pictures marked as private, an online forum revealed late Monday. Even pictures supposedly kept hidden from uninvited eyes by Facebook's privacy controls aren't safe, reported one user of a popular bodybuilding forum in a post entitled 'I teach you how to view private Facebook photos.' Facebook appears to have acted quickly to eliminate the end-run around privacy controls, after word of the exploit spread across the Internet. It wasn't long before one online miscreant uploaded private pictures of Facebook founder Mark Zuckerberg himself — evidence that the hack worked, he said."
Again? (Score:5, Insightful)
Of course (Score:5, Insightful)
If you upload something to Facebook, assume anyone can see it. Whether it's a genuine hack, somebody figuring out your password, or leaving a computer logged in while you go grab coffee, somebody will at some point have access to everything, so don't upload it in the first place. It's that simple.
That means don't complain profusely about your boss every day, don't send explicit messages to you lover, and certainly don't use Facebook to archive those pictures of that wild bachelor party.
Re:Of course (Score:5, Insightful)
Always assume anything on facebook is visible to everyone always. You no longer have any control, it is never deleted, never removed.
It is why i have never used facebook ever. It isnt worth it. While i do know some has posted pictures of me, those pictures cant truely be linked to me.
Omg! (Score:1, Insightful)
A "bodybuilding" forum is reporting one of the biggest Facebook flaw I ever heard of? Or in other word, the biggest anti-geek place is reporting a really geek thing??
What's the world coming to??
Re:Again? (Score:4, Insightful)
A bug? In software? OH MY! (Score:5, Insightful)
Unless we're going to start regulating social networks like we do products for some other industries, then, well, there's a reasonable likelihood of this sort of thing happening on a regular basis. If you don't like it, don't share stuff on Facebook.
Re:Of course (Score:4, Insightful)
(hey, Brian, I'm not wearing panties today. Surprise for when you get home after work! ;) )
This is the classic problem of how to properly close a parenthetical statement that ends with an emoticon.
Re:you can't trust 3rd parties with private info (Score:5, Insightful)
It's not my cup of tea; but the notion that one could usefully improve one's security by simply replacing facebook with a personally implemented private network is roughly similar to the notion that one can usefully improve one's security by severing one's LAN from the internet.
Both are true; but not terribly useful for most users.
Surprisingly weak architecture (Score:5, Insightful)
Re:Again? (Score:5, Insightful)
And no friend of yours uses facebook?
And no one you ever was in a party with?
And no one who has your adress in their gmail contact list?
Facebook is a threat not limited to its users.
Re:Private pictures? (Score:5, Insightful)
Re:Again? (Score:3, Insightful)
To you. It's a troll to anybody who's tired of seeing this trotted out every time there's a story that can be even vaguely linked.
Re:Again? (Score:4, Insightful)
If you don't want private stuff to be exposed then don't post it. It's that simple. When you upload/post stuff, you have no control over it. But you can still use Facebook to stay in touch.
Re:Of course (Score:5, Insightful)
... While i do know some has posted pictures of me, those pictures cant truely be linked to me.
That is, until the other user imports their contact lists with your email addresses and phone numbers into Facebook, and starts tagging pictures of you, and they correlate others's address books with you in them. Then Facebook has a good idea who you are and who your "friends" are without you ever logging in.
Re:Again? (Score:5, Insightful)
Oh you missed the fun part brother. It's not whether you post it, it's I post you on it. You can't stop it, you can't delete it.