Facebook admits bug shared six million users' contact details

Jun 22, 2013
Phone numbers and email addresses belonging to some 6 million Facebook users have been improperly shared due to a software bug, the social network said.

Phone numbers and email addresses belonging to some 6 million Facebook users have been improperly shared due to a software bug, the social network said.

But no financial or other information was revealed to others, and there was "no evidence that this bug has been exploited maliciously," said in a security note, adding it was "upset and embarrassed" by the glitch.

Affected users were being notified by email, it said, while stressing that the practical impact was likely to be "minimal," partly because improper data sharing would only have occurred between users who already had some connection.

"We take people's privacy seriously, and we strive to protect people's information to the very best of our ability," it said, but added: "Even with a strong team, no company can ensure 100 percent prevention of bugs."

In this case, the bug "may have allowed some of a person's contact information (email or ) to be accessed by people who either had some contact information about that person or some connection to them."

The unwarranted sharing would have occurred when a Facebook user went to download an archive of their Facebook account through the social network's Download Your Information (DYI) tool, it said.

"They may have been provided with additional email addresses or telephone numbers for their contacts or people with whom they have some connection," according to the security note.

It continued: "We've concluded that approximately 6 million Facebook users had email addresses or shared."

"We currently have no evidence that this bug has been exploited maliciously, and we have not received complaints from users or seen anomalous behavior on the tool or site to suggest ."

"Although the practical impact of this bug is likely to be minimal since any or phone number that was shared was shared with people who already had some of that contact information anyway, or who had some connection to one another, it's still something we're upset and embarrassed by."

Explore further: Britain threatens Internet 'trolls' with two years in jail

add to favorites email to friend print save as pdf

Related Stories

Facebook draws user ire with email switcheroo

Jun 26, 2012

(AP) — In yet another change that upset users, Facebook has replaced the email addresses users chose to display on their profile pages with (at)facebook.com addresses.

Facebook fixes photo privacy bug

Dec 07, 2011

Facebook has fixed a bug that allowed the viewing of some private photographs of other members and which was reportedly used to access personal pictures of founder Mark Zuckerberg.

Facebook software slip sidelines host of websites

Feb 08, 2013

A Facebook software problem on Thursday temporarily sidelined websites synched to a feature that lets people's identities at the leading social network follow them around the Internet.

Recommended for you

Facebook unfriends federal drug agency

Oct 17, 2014

(AP)—Facebook wants assurances from the Drug Enforcement Administration that it's not operating any more fake profile pages as part of ongoing investigations.

Obama unveils new measures to stem identity theft

Oct 17, 2014

US President Barack Obama on Friday ordered "pin and chip" security measures for government payment systems, aiming to stem the proliferation of credit card fraud and identity theft.

User comments : 0