Well, two big things this week with Facebook. Facebook has confirmed it does use phone numbers that users provided them for security purposes, specifically for 2FA, (2FA = Two Factor Authentication), a security technique that adds a second layer of authentication to help keep accounts secure, to also target them with ads. Facebook as well had a security breach with up to 50m accounts attacked.
I will start with the data breach here. The data breach was discovered on Tuesday where attackers were able to exploit a vulnerability in a feature known as "View As" to gain control of your account. Users that were affected were prompted to re-login on Friday. This security flaw has been addressed and has been fixed, so say the firms VP of product management Guy Rosen, which also stated that all affected accounts have been reset, as well as another 40 million accounts "as a precautionary step".
Who was affected?
Facebook would not say where in the world the 50 million users are, but it has informed Irish data regulators, where Facebook's European subsidiary is based. The company said that the users prompted to login again did not have to change their passwords.
"Since we’ve only just started our investigation, we have yet to determine whether these accounts were misused or any information accessed. We also don’t know who’s behind these attacks or where they’re based. “
He added: "People’s privacy and security is incredibly important, and we’re sorry this happened."
The company has confirmed that Facebook founder Mark Zuckerberg and its chief operating officer Sheryl Sandberg were among the 50 million accounts affected.
ran related to some research work done by two academics at two U.S. universities who ran a study which they were able to demonstrate that FB uses pieces of personal information that individuals did no explicitly provide it to nonetheless target them with ads.
A while back, Facebook did say that users who were getting spammed with FB notifications to provide a number for the 2FA was a bug. The last thing we want is for people to avoid helpful security features because they fear they will receive unrelated notifications,” Facebook then-CSO, Alex Stamos wrote in a blog post at the time.
Seems when he stated that, failed to mention the rather pertinent additional side detail that its using those numbers for ad targeting. Seems that they are willing to sell everything it gathers from you for money, finding any way it can squeeze $$$ by exploiting you. Overall, they say you can opt out at any time just by not using the 2FA, so that leaves you with 2 options, be safe, or get spammed with ads.
My thoughts on this. Well, after the last major f-up where they were just giving away millions of users information without permission, I lost all trust of the company. The thought of repurposing phone numbers that were provided by users specifically for 2FA, and using them to target for advertising is morally disgusting. As a web div myself, I would never do anything like this and it is absolutely disgusting.
Personally, Facebook and Mark Zuckerberg I am seeing have no ethics, and the acts that they have been doing is comparable to what a criminal enterprise would do. I personally like to warn people that you should be careful what you post on FB, or any type of social media, meaning, don't give out information like when or where you're going to be, when nobody's home, (like you and the family going on a trip), ect...
I know that's common sense stuff, but, unfortunately, there are a lot of you out there that just don't realize that your doing it, and criminals will take full advantage of your arrogance/ignorance of the subject or the fact that your doing it. So overall, what I am saying is, be safe.
Nuke Dev / Coder
JoinedJan 12, 2012
All times are UTC - 7 Hours [DST enabled]
Page 1 of 1
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum You cannot attach files in this forum You cannot download files in this forum