Feeds

Facebook gives users' names to advertisers

Violates own privacy policy

Website security in corporate America

Facebook has been giving advertisers data that they can use to discover users' names and locations, contrary to its privacy policy.

The dominant social network tells users it won't share their details without consent, but according to the Wall Street Journal, it has handed over information that advertisers can use to look up individual profiles.

MySpace had a similar loophole, it's reported. Both sites said they were making changes to stop the handover.

Advertisers were getting reports whenever users clicked on their ads, as is typical across the web. However, Facebook and MySpace's reports contained the URL of the user's profile page, which often included their real name or user name. Neither site had bothered to obscure the data, in breach of their own privacy policies.

It's just the latest privacy failing by Facebook, which has suffered heavy criticism this month. Major changes to its privacy settings are expected after it decided to publish users' private information, and IM transcripts showed CEO Mark Zuckerberg calling those same users "dumb fucks" for trusting him with their data. ®

Protecting users from Firesheep and other Sidejacking attacks with SSL

More from The Register

next story
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
UK.gov lobs another fistful of change at SME infosec nightmares
Senior Lib Dem in 'trying to be relevant' shocker. It's only taxpayers' money, after all
Critical Adobe Reader and Acrobat patches FINALLY make it out
Eight vulns healed, including XSS and DoS paths
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.