May 5, 2010, 12:10PM
Facebook Security Hole Exposes Live Chat, Private Data
Share
Recommend
Print
E-mail
2 Comments
The problems with security and privacy on Facebook hit a new gear today with news that a web site vulnerability exposed live chat sessions and other private user data.
According to a TechCrunch Europe report, the gaping security security on the Facebook site allowed any user to view the live chats of their ‘friends’ with just a few mouse clicks.
From the article:
Using what sounds like a simple trick, a user can also access their friends’ latest pending friend-requests and which friends they share in common. That’s a lot of potentially sensitive information...
...The irony is that the exploit is enabled by they way that Facebook lets you preview your own privacy settings. In other words, a privacy feature contains a flaw that lets others view private information if they are aware of the exploit.
TechCrunch reported the issue to Facebook and the company pulled the live chat feature off line for what was described as "maintenance."
This YouTube video provides a glimpse of the severity of the problem:
Recommended Reads
Shorten URL: 
. Click to copy to clipboard or post to Twitter
. Click to copy to clipboard or post to TwitterKaspersky Lab Channel and Alliance Partners
Newsletter Sign-up
Newsletter Sign-up
Security news and analysis with expert opinion and perspective from the Threatpost editors.
Take Our Poll
Threatpost Content as You Like It
 |
 |
 |
 |
| iPhone App | Newsletter |
Comments
I knew there was some thing wrong with that page. If they can see who you have pending can they accept or ignore someone. When I went on the other day someone had sent a request to be my friend I ignored him then he showed up as being my friend.Facebook is getting reall bad lately.
Apparently the video has been removed due to a terms of use violation?
Post new comment