Facebook app data exposed by third-party developers

Another huge Facebook security blunder exposes data of millions

Facebook is grappling with another startling data leak with 540 million records found in plain sight on a public Amazon server.

In a new privacy breach, over 540 million records of Facebook data including accounts names, likes, comments, as well as FB IDs were found exposed on Amazon's Cloud servers, cybersecurity firm UpGuard Cyber Risk reported.

According to the researchers from UpGuard, the larger of the two data sets came from a Mexican media company called Cultura Colectiva. "In general, we work with developers to make sure that they're respecting people's information and using it only in ways that they want". That's the takeaway from the latest story of Facebook's reckless data sharing.

"We are aware of the potential uses of data in current times, so we have reinforced our security measures to protect the data and privacy of our Facebook fanpages' users", it told Reuters.

"It was not until the morning of April 3rd, 2019, after Facebook was contacted by Bloomberg for comment, that the database backup. was finally secured", the post said.

Facebook said that Amazon helped it remove the data once UpGuard flagged that it was available.

Another dataset, sourced from a Facebook-integrated app known as "At the Pool", was also found via an Amazon S3 bucket.

While the passwords were that of the At The Pool app, its exposure becomes a problem for users who have a tendency of going by the "one password for all" rule. As Facebook faces scrutiny over its data stewardship practices, [it has] made efforts to reduce third-party access.

But some in the security industry warn of lack standards around storing sensitive data.

The first server contained most of the data, and belonged to Cultura Colectiva, a Mexico-based online media platform operating across Spanish-speaking Latin America countries.

Facebook said in its statement that it worked with Amazon to take down the databases once alerted to the issue.

The app known as "At the Pool" stopped operating in 2014, yet their the database was still publicly available. The data exposed in each of these sets would not exist without Facebook, yet these datasets are no longer under Facebook's control. Then, after months of inaction from both Cultura Colectiva and AWS, information about more than half a billion people was finally taken down.

"Organizations can't transfer responsibility for securing sensitive data by moving it to the cloud", Erlin said. The company's website says it creates content through data and technology and has more than 45 million followers on Facebook, Instagram, Twitter, YouTube and Pinterest.

Related News:



Most liked

Trump tax returns, Mueller probe report become focus of continuing spat
As a reminder, Special Counsel attorneys are working with Barr and Deputy Attorney General Rod Rosenstein on redacting material unable to be lawfully released.

AAF halts inaugural season after only eight games
He said the league had plans to spend around $500 million to $750 million over the first five years to get it off the ground. The move comes just eight weeks into the regular season, with two games remaining before playoffs commence.

Kanye West Gives First-Ever Interview On Keeping Up With The Kardashians
Her sister Kourtney Kardashian , meanwhile, revealed it took her a week to name her son Reign after he was born. Kim Kardashian knows where her loyalties lie.

New Game of Thrones Season 8 Poster Shows the Cost of War
The scary yet convincing April Fool's Day prank was much appreciated by fans, who lauded her for her "great acting skills". A brand new Game of Thrones teaser was released on Tuesday and appears to show the death of several main characters.

‘The View’ unloads on decision to drop all charges against Jussie Smollett
However, prosecutors in Cook County, Illinois on Tuesday dropped all charges against the actor following a surprise court hearing. Some experts say the actor definitely got special treatment. "The court file was not supposed to be sealed".

Tom Brady saves 1st tweet for April Fools' Day: I'm retiring
So it was fairly obvious that Brady was just trying to fool people on the biggest day of the year to mess with fools. Fortunately, many Twitter users were keenly aware of the date at the time of the tweet.

'SNL' Covers Mueller Report With Alec Baldwin's Trump
Trump is "clean as a whistle", Aidy Bryant's Barr translated. "No collusion, no diggity, no bad", Bryant's Barr wrote. Explained Baldwin's Trump: "We're going to black out everything except the words "no" and 'collusion'".

Mosque attacks remembrance service begins in Christchurch
The Australian gunman Brenton Tarrant, 28, is the only one accused of the attack. "He was a really nice man", she said. Prince William joined NZ Prime Minister Jacinda Ardern on a panel at the World Economic Forum meeting in January.

Ferrari's Leclerc storms to first F1 pole in Bahrain
Current Ferrari driver Charles Leclerc is the first FDA graduate to have been promoted to the Maranello team. And come next week, we'll see them together again.

Politics of Puerto Rico heat up
Besides Puerto Rico, Hurricane Maria , a Category 5 storm, also devastated Dominica and the US Virgin Islands in September 2017. The bill is likely to spark a broader debate in both the states and Puerto Rico about the island's status as a US territory.

U.S. House fails to override Trump veto in border wall dispute
In February, California and 15 other states filed lawsuits against the declaration, saying it is unconstitutional. Both the House and Senate did vote to stop the emergency, but the president's veto trumped them.

Taraji P. Henson reacts to charges being dropped against Jussie Smollett
But she said Smollett had no idea who attacked him until the brothers were later identified by police. He told a detective that at least one of the attackers was white, according to Chicago police .

Juventus Sweat After Cristiano Ronaldo Forced Off With Dodgy Hamstring
Ronaldo is due in action for Juventus when they take on Ajax in the first leg of their Champions League quarter-final on April 10. It has been eight months because I needed time for myself. "It was very clear, the referee should have given it", said Ronaldo.

Thailand's Junta 'Manipulated' Election, Ousted PM Thaksin Says in NYT Article
But voters deserted the Democrat Party, the country's oldest political party, in its Bangkok and southern strongholds. The, as yet, unofficial results showed Pheu Thai leading with 137 seats to 96 seats for junta leader Prayuth's party.

Pence lashes out at Omar, 2020 Dems in AIPAC speech
Yet attendees said Democrats need to tackle anti-Semitism directly and without lumping it in with other forms of bigotry. Hoyer also said, "I've been proud to help lead efforts in Congress to push back against the BDS movement".