Login With Facebook, Hijackers May Hack Your Data
Social Media

Be Careful While "Login With Facebook," Hijackers May Hack Your Data

Your Facebook data is no more safe.

https://dk2dyle8k4h9a.cloudfront.net/Be Careful While \

Major insights:

  • A security breach in Facebook has again raised flames for experts at the company as hidden trackers can easily abuse “login with Facebook” feature.
  • It’s lethal as trackers can easily harvest user’s data including gender, age, email address, username, and the profile picture.
  • It is another massive security concern for the social networking site after Cambridge Analytica scandal.
  • It makes it easy for unscrupulous companies to hijack the platform for harvesting the user data.

It is yet another example of what could get possibly worst-case scenario of surrendering your personal data including gender, age, email address, username, and profile picture to Facebook. In its major coverage, TechCrunch has confirmed that the company is investing a security issue that shows user data is available to JavaScript trackers (third-party) embedded on the websites by using Facebook login. 

Such logins can easily get a user’s personal information from the website that is not only limited to name and gender but also goes beyond to the locale and other personal stuff that users share on their Facebook walls. There is no exact information further on how this data is exploited by trackers. But trackers are sure to sell personalized user’s information to other publishers in order to bring up customized services to respective walls of the users.

Login with facebook hack your dataImage Source: Techcrunch

“Login with Facebook” is a feature that many of us use while signing in to a new website. With such a sign in, the procedure is simplified and users have the relief that they don’t have to scratch their heads to remember a set of new usernames and respective passwords. And that’s a significant relief. 

A Facebook spokesperson brought light to this incident by quoting, “Scraping Facebook user data is in direct violation of our policies. While we are investigating this issue, we have taken immediate action by suspending the ability to link unique user IDs for specific applications to individual Facebook profile pages, and are working to institute additional authentication and rate limiting for Facebook Login profile picture requests.”

The issue was discovered by security researchers, one of whom wrote, "This unintended exposure of Facebook data to third parties is not due to a bug in Facebook's Login feature. Rather, it is due to the lack of security boundaries between the first-party and third-party scripts in today's web."

Meanwhile, in the research, professionals found trackers embedded in 454 sites. These are some of the top sites owing to Alexa traffic rank. The list also includes MongoDB. On this issue, MongoDB clarified to TechCrunch by saying, "We were unaware that a third-party technology was using a tracking script that collects parts of Facebook user data. We have identified the source of the script and shut it down."

The company is investigating the issue, and there is no official information available from the company on the same. However, a discovery of such a security issue has arrived at a critical time for Facebook when the company is still trying to build its image from the scratch after Cambridge Analytica scandal. CEO Mark Zuckerberg has already invested a lot to clean the image of its brand but the new issue seems to bring a whole new drama on board for the company.   

Such revelations do nothing good other than causing massive concerns for users. Exploiting user’s data without their consent is nothing but punishable. While Facebook is again on the hot seat and we’ll have to wait to see how it gets out of this massive trauma. 

You may also like:

Facebook Planning To launch Its Own Internet Satellite
Facebook Is Scrapping These Three Apps Due To Low Usage
Facebook Accidentally Unblocks People From Its 800,000 Users Blocked List

Neha Baluni
Written By
Neha Baluni

Being a Senior Technical Writer at MobileAppDaily, Neha Baluni loves jotting down her piece of opinion for the advancing technology in mobile app world. Having a journalism background, she is a writer by day and a reader by night. Her passion for writing covers different categories of technical and non-technical genre. In addition to writing, Neha loves traveling a lot.

Top Companies

01.
InMobi
Singapore
02.
Dot Com Infoway
New York, USA
03.
M&C Saatchi Mobile
New York City, USA
04.
Techmagnate
New Delhi, India
05.
Fetch
London, UK
View full report

Latest Articles

Social Media

Snapchat Stories Everywhere Could Become A Part Of The Web

Neha Baluni 4 min read  

Snapchat is believed to be working on a feature that will allow users to share their stories beyond the app. The feature termed as “Stories Everywhere” is Snapchat’s feature to boost its presence beyond the core mobile app to compete with giants like Facebook & Instagram as wel

Social Media

Snapchat Needs To Be Redesigned As It Is Too Hard To Operate, Says Snap CEO Evan Spiegel

James Lawson 4 min read  

Snapchat discloses its Q3 earnings on Tuesday and shares that the company’s revenue and user growth fall below the expected figures in the last quarter. Along with the earning details, Spiegel also mentioned the future plans of the Snapchat with investors in the Q3 earnings letter which includ

Social Media

Facebook's Apps For Groups Platform Recurs

Vikram Khajuria 4 min read  

After thumping with Cambridge Analytica scandal, Facebook was up with a number of measures to withhold the damage that included API’s lockdown and restrictions on many others. Even Mark Zuckerberg, Founder, and CEO of Facebook apologized publicly and pledged to rake up all the privacy policies

Social Media

Instagram APK Gives Hint For Video & Voice Calling Feature

Akash Singh Chauhan 4 min read  

Facebook-owned Instagram may be coming with a voice and video calling option for the users as Instagram APK (Android Application Packages) has hinted for a similar features. In the codes, there are files captioned with video & call and they are symbolized with icons of phones and cameras on it.