The personal information of Facebook users has been exposed on the internet via Amazon’s cloud computing servers, researchers said on Wednesday, in the latest revelation to stoke fears over user privacy on the social network.
Cybersecurity firm UpGuard said in a blog post that it had discovered two large sets of data harvested from Facebook users by third-party apps that used Amazon Web Services to run their business. It is unclear how long that data — which included account names, email addresses and comments posted on Facebook — had been exposed for, UpGuard said.
The discovery shows that a year after the Cambridge Analytica scandal exposed how unsecure and widely disseminated Facebook users’ information is online, companies that control that information at every step still haven’t done enough to seal up private data.
In one instance, Mexico City-based digital platform Cultura Colectiva, openly stored 540 million records on Facebook users, including identification numbers, comments, reactions and account names. The records were accessible and downloadable for anyone who could find them online. That database was closed on Wednesday after Bloomberg alerted Facebook to the problem and Facebook contacted Amazon. Facebook shares pared their gains after the Bloomberg News report.
Another database for a long-defunct app called At the Pool listed names, passwords and email addresses for 22,000 people. UpGuard doesn’t know how long they were exposed, as the database became inaccessible while the company was looking into it.
Facebook Inc. shared this kind of information freely with third-party developers for years, before cracking down more recently. The problem of accidental public storage could be more extensive than those two instances. UpGuard found 100,000 open Amazon-hosted databases for various types of data, some of which it expects aren’t supposed to be public.
“The public doesn’t realize yet that these high-level systems administrators and developers, the people that are custodians of this data, they are being either risky or lazy or cutting corners,” said Chris Vickery, director of cyber risk research at UpGuard. “Not enough care is being put into the security side of big data.”
Cultura Colectiva is a digital platform that posts stories about celebrities and culture and largely targets a Latin American audience. The company’s website says it creates content through data and technology and has more than 45 million followers on Facebook, Instagram, Twitter, YouTube and Pinterest.
Facebook for many years allowed anyone making an app on its site to obtain information on the people using the app, and those users’ friends. Once the data is out of Facebook’s hands, the developers can do whatever they want with it.
Last year, Facebook started an audit of thousands of apps and suspended hundreds until they could make sure they weren’t mishandling user data. Facebook now offers rewards for researchers who find problems with its third-party apps.
A Facebook spokesperson said that the company’s policies prohibit storing Facebook information in a public database. Once it was alerted to the issue, Facebook worked with Amazon to take down the databases, the spokesperson said, adding that Facebook is committed to working with the developers on its platform to protect people’s data.
Latest Stories
-
There are greener pastures in Ghana-Prof. Owusu-Dabo optimistic of country’s potential
7 mins -
Myjoyonline Interview with Abubakar: Guinness World Record Holder for ‘Most Trees Hugged In An Hour’
14 mins -
JoyNews’ Clinton Yeboah honoured at 2023 Int’l Sports Media Awards in Spain
53 mins -
14 PWDs selected for maiden Africa Health Collaborative Medicine Counter Assistant training
1 hour -
Manchester United open to offers for nearly all of squad
2 hours -
Price of LPG per kilogramme constitutes 22% of taxes – LPG Marketers Association
3 hours -
Nigeria appoint Finidi George as new Super Eagles boss
4 hours -
Elevating Ghana’s creative industry: A blueprint for competing with Nigeria and South Africa
5 hours -
Poor finishing a problem for Asante Kotoko throughout the season – Prosper Ogum
6 hours -
Samini teams up with Francis Osei for ‘Sticks N Locks’ EP
6 hours -
Government should resource record labels – Seven Xavier
6 hours -
I need majority in parliament to successfully complete my term – Akufo-Addo pleads
6 hours -
Next NDC government will not recognise illegal contracts signed by current administration – Sammy Gyamfi
6 hours -
Premier League clubs vote in favour of spending cap plans
6 hours -
Nigeria’s fuel crisis brings businesses to a halt
6 hours