BBC Clips Facebook for Lax App Security

The BBC posts the results of an investigation into the security of personal information on Facebook. It created an application designed to mine user data and made up a fake profile. Then, it used the application to gain access to the personal information of “Bob Smith,” including his name, hometown, interests and school.

That applications can do this shouldn’t be surprising, since nearly every application requires you to allow it to access your profile in order for you to install it. Still, the reminder of this fact is unsettling.

For its part, Facebook defends its practices, saying in an online Q&A: “Access by applications to Facebook user data is strictly regulated and if we find that an application is in violation of our terms and policies, we take appropriate action to bring it into compliance or remove it entirely.” It also repeated the idea that users have the ability to report a rogue application.

The problem is that the way someone might become aware of their private information being misused is by it being, in fact, misused. What Facebook needs to do (and I’ve said this before) is to prevent personal data from being misused in the first place.

This entry was posted on May 5, 2008 at 3:14 pm and is filed under Facebook, social networking, widgets. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply