Feeds

Facebook bots grope our 'privates', and every wronged user should get $10,000 – lawsuit claims

Allegations over message scanning 'without merit'

Secure remote control for conventional and virtual desktops

Two Facebook users have begun a class-action lawsuit that alleges the social network's "private" messaging system is a lie.

The pair, Matthew Campbell and Michael Hurley, reckon each of the website's estimated 166 million US users should get a payday of up to $10,000 apiece as compensation.

The suit, filed in California, states that Facebook explicitly promises that the content of private messages won't be shared with third parties. But, it claims, if a URL is included in a message then Facebook's software automatically parses the web address and the content of the message to hone its targeted advertising.

"Facebook misleads users into believing that they have a secure, private mechanism for communication – Facebook's private messaging function – when, in fact, Facebook intercepts and scans the content and treats portions of that content no differently than a public 'Like' or post, broadcast openly across the Internet," the court filing claims.

"Further, the purpose for the invasive scanning of these purportedly 'private' messages is not meant for the benefit of users, but rather is a mechanism for Facebook to surreptitiously gather data in an effort to improve its marketing algorithms and increase its ability to profit from data about Facebook users."

The suit alleges that while users are kept in the dark over private message processing, the social network's "web crawlers" notify third parties when their websites are referred to in messages by URL – just as though they had received public "Likes" on their web pages.

The plaintiffs say this behavior was exposed by two separate security researchers last year and as a result they are asking for a class-action case to be brought against Facebook. In August, Swiss researchers at High-Tech Bridge said they spotted the practice, and were backed in October by Ashkan Soltani, formerly an FTC investigator and now an independent security consultant.

The suit asks that any user who has sent messages with URLs in them should be able to claim up to $10,000 – meaning the potential payout by Facebook could be as high as $166bn, or about $30bn more than the firm's market capitalization today.

Facebook spokeswoman Jackie Rooney told Bloomberg the case was "without merit." ®

Protecting against web application threats using SSL

More from The Register

next story
Brit telcos warn Scots that voting Yes could lead to HEFTY bills
BT and Co: Independence vote likely to mean 'increased costs'
Phones 4u slips into administration after EE cuts ties with Brit mobe retailer
More than 5,500 jobs could be axed if rescue mission fails
New 'Cosmos' browser surfs the net by TXT alone
No data plan? No WiFi? No worries ... except sluggish download speed
Radio hams can encrypt, in emergencies, says Ofcom
Consultation promises new spectrum and hints at relaxed licence conditions
Blockbuster book lays out the first 20 years of the Smartphone Wars
Symbian's David Wood bares all. Not for the faint hearted
Bonking with Apple has POUNDED mobe operators' wallets
... into submission. Weve squeals, ditches payment plans
This flashlight app requires: Your contacts list, identity, access to your camera...
Who us, dodgy? Vast majority of mobile apps fail privacy test
Apple Watch will CONQUER smartwatch world – analysts
After Applelocalypse, other wristputers will get stuck in
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.