News, via Dan Goodin – writing at ArsTechnica – of an apparent dev team screwup at Facebook Inc. (Nasdaq: FB). In which, the crack-dev-team at the purveyor of user data managed to introduce a pernicious flaw in the Detritus (also known as the Company’s ‘Code‘, or ‘Intellectual Property‘) that happily exposed the posts of 14 million of the company’s ‘Subjects‘(also known as ‘Users‘) to one and all. What happended to ‘Code Review‘ (also known as ‘Looking for Developer Screwups‘ or ‘Application Testing‘ also known as ‘Testing for Developer Screwups‘? Nary a peep from the Facebook Security Team on this one; and in summation: Where’s the Apology, Chairman Zuckerberg?
“The bug occurred as Facebook developers were creating a new way to share photos and other featured items in user profiles. In the process, the developers accidentally suggested all new posts be set to public, rather than just the featured items.” – via Dan Goodin writing at ArsTechnica
*** This is a Security Bloggers Network syndicated blog from Infosecurity.US authored by Marc Handelman. Read the original post at: https://arstechnica.com/information-technology/2018/06/facebook-bug-made-posts-by-14-million-users-readable-by-anyone/