The problem, which was discovered by Emily Steel and Jeffrey A. Fowler: many of Facebook's most popular apps (including games made by Zynga and LOLapps) transmitted User IDs to advertisers. Advertisers could then determine the names of an app's users, along with any info they'd made available to "everyone."
This has led to a number of discussions about leaks, breaches, and even the sale of private data. Plus, it's not just bloggers doing the talking; mainstream news shows are covering the topic this morning.
The fact that "everyone" might include a few advertisers shouldn't come as a shock, however, and it looks like most apps' developers weren't sharing UIDs on purpose.
A post on the Facebook Developer Blog explained, "In most cases, developers did not intend to pass this information, but did so because of the technical details of how browsers work." (More information on "referers" is available here.)Later, the post promised, "Nevertheless, we are committed to ensuring that even the inadvertent passing of UIDs is prevented and all applications are in compliance with our policy."
No comments:
Post a Comment