Print
According to an investigation by Symantec, innumerable Facebook applications have been leaking your personal data for years. The issue, just discovered by Symantec, has been reported to Zuckerberg and company, but advertising and stat tracking companies may have already had access all this time.
The issue stems from the use of older authentication schemes for Facebook apps. The site uses OAUTH2 now, but many applications still use older methods. When an app asks for permission to access user data, it is possible that the IFRAME app is making use of one of the deprecated APIs. That means the access tokens could be leaked to un known third-parties. This could happen if the app requests an external URL. The token will be sent to the server in question.
According to Symantec, Facebook has closed the loophole, but that doesn't mean you're in the clear. The access tokens give third parties the same access to your data as the application had. Unfortunately, many of these tokens could be stored in server logs at advertising or analytics companies. Changing your password will invalidate any leaked tokens, which we suggest you do.
Comments are closed on this article
Holly Golightly
May 11, 2011 at 7:35am
...Wow, another proud reason not to use FaceBook at all. To be honest with you, I feel it is a fad. I do not see what people see in that social network that they must have it embedded into every single device. I mean, FaceBook on TV? Are you for real? Sometimes fads go too far!
bling581
May 11, 2011 at 9:56am
I think most adults see it for what it is, but today's kids are growing up in a world where things like texting, online chatting or social networking is popular and "cool". They're the ones that make things like Facebook popular in the first place. It wasn't too long ago that MySpace was cool and look where it's at now. I think Facebook will be around a lot longer though because of all the adoption it's gotten from businesses and big corporations. Social networking in general is "in" right now.
