Facebook Fixes Bug That Exposed Private Chats

A Facebook security flaw that let members view the live chats of friends has been fixed, according to the company.

Another day, another Facebook security snafu. The popular social network has patched a major security bug that allowed users to snoop on their friends' private chats, and view their pending friend requests.

The exploit caused Facebook to temporarily disable chat, which was back online as of 11 a.m. (US Pacific) on Wednesday.

Users could inadvertently activate the security breach, which was first reported by TechCrunch Europe, via their privacy settings. Facebook has since patched the bug, and sent PC World this statement explaining the mishap:

"For a limited period of time, a bug permitted some users' chat messages and pending friend requests to be made visible to their friends by manipulating the "preview my profile" feature of Facebook privacy settings. When we received reports of the problem, our engineers promptly diagnosed it and temporarily disabled the chat function. We also pushed out a fix to take care of the visible friend requests which is now complete."

Facebook did not report the number of users who were affected by the bug.

The chat exploit is the latest in a long string of Facebook security controversies. Two months ago, the site was victimized by five different exploits, including four hoax applications and a variant of Koobface virus.

US Senator Charles Schumer (D-N.Y.) last week urged the Federal Trade Commission to create privacy guidelines for social networking sites like Facebook, Twitter, and MySpace. Schumer singled out the "complicated and confusing" steps that Facebook users must take to avoid sharing their personal information with third-party sites.

Facebook CEO Mark Zuckerberg has infamously made several foot-in-mouth remarks that glibly dismiss the importance of user privacy.

A recent survey by Sophos, an IT security firm, shows that Facebook users worldwide are concerned about proposed changes to the social network's security policies.

It appears that today's chat bug was zapped before it could cause much harm. Still, the incident contributes to the widely-held perception that the term "Facebook security" is an oxymoron.

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags Facebooksocial networkingkoobfacebug

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Jeff Bertolucci

PC World (US online)
Show Comments

Brand Post

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Tom Pope

Dynabook Portégé X30L-G

Ultimately this laptop has achieved everything I would hope for in a laptop for work, while fitting that into a form factor and weight that is remarkable.

Ada Chan

Dynabook Portégé X30L-G

I highly recommend the Dynabook Portégé® X30L-G notebook for everyday business use, it is a benchmark setting notebook of its generation in the lightweight category.

Tom Sellers

MSI P65

This smart laptop was enjoyable to use and great to work on – creating content was super simple.

Lolita Wang

MSI GT76

It really doesn’t get more “gaming laptop” than this.

Jack Jeffries

MSI GS75

As the Maserati or BMW of laptops, it would fit perfectly in the hands of a professional needing firepower under the hood, sophistication and class on the surface, and gaming prowess (sports mode if you will) in between.

Taylor Carr

MSI PS63

The MSI PS63 is an amazing laptop and I would definitely consider buying one in the future.

Featured Content

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?