Facebook API Privacy Hole Exposed by Web Developer [Facebook Founder Mark Zuckerberg’s Events Accessed, Official Response Pending]
![Facebook API Privacy Hole Exposed by Web Developer [Facebook Founder Mark Zuckerberg’s Events Accessed, Official Response Pending]](http://Tftscdn.nexus404.com/Blog/wp-content/thumbs/alt/Facebook-tilted-reflected-logoTFTSThumb180125.jpg)
Facebook has, of course, suffered from privacy issues before – such as temporarily revealing private email addresses – and now its facing another as uncovered by web developer Ka-Ping Yee, who works as a software engineer for the charitable arm of Google, who’s discovered that Facebook’s new API – and specifically their Graph API released last Friday – is flawed.
The flaw uncovered by Yee will, in certain cases, allow users to see public events that other users (not friends) either have attended or have committed to attend and, by way of demonstration of the API privacy flaw, Yee managed to access a list of public events relating to none other than a certain Mark Zuckerberg, as seen below (Zuckerberg being Facebook’s founder, in case you’ve wondering).
“Using a freshly created account with no connection to you, anyone can make requests to the new Graph API and get a list of events, with dates, descriptions, and locations,” Yee states in an entry on his blog. “Based on my experimentation, it looks like this list contains any event that (a) has a privacy setting of “Open” and (b) you have marked as “Attending” or “Maybe Attending”. The content of the event itself is also available, including any comments posted on the event and the names of other people who are invited or attending.”
Of course, the events privacy settings need to be open, as Yee explains above, so what’s the problem, you may ask? Yee explains, “there’s a big difference between publishing an event page with a list of people attending, and publishing a list of events that you attended. Before the new API, to find out which events you attended, I’d have to visit every single event page on Facebook and look for your name among the people attending.” He adds, “Now, I can just ask the API what you’ve been doing, and it will tell me.”
The latest update on Yee’s blog confirms that whilst some users are reporting that their events are indeed exposed others say their events seem to remain hidden and Yee has confirmed that he’s contacted Facebook asking why this should be the case (a reply is pending, we assume).
So, to your knowledge, are you affected and, either ways, are you concerned? Do feel free to let us know as Yee, and we, await Facebook’s response to the issue.
![Kindle Fire: Silk Browser Does Not Violate User Privacy [Amazon Says Silk Does Not Invade Privacy & Only Stores Non-Encrypted Data, But U.S. Congress Not Satisfied With Response]](http://Tftscdn.nexus404.com/Blog/wp-content/thumbs/alt/Amazon-Kindle-Fire-tablet-with-Android-logoTFTSThumb150104.jpg)
![Facebook Frictionless Sharing Gets Criticism Amid Privacy Debates [Careful Where You Click; Your Actions Might be Automatically Broadcast to Your Facebook Friends With Seamless Sharing]](http://Tftscdn.nexus404.com/Blog/wp-content/thumbs/alt/iPad-2-with-Facebook-logoTFTSThumb150104.jpg)
![Facebook Sponsored Posts to Launch in 2012 [Facebook Planning to Run Sponsored Posts in 2012; Privacy Concerns Raised as Facebook Accused of "Selling" Timeline Information for Displaying Contextual Ads]](http://Tftscdn.nexus404.com/Blog/wp-content/thumbs/alt/Facebook-Badge-with-pile-of-moneyTFTSThumb150104.jpg){kind=icon}
![Facebook 2012 Hacker Cup to Challenge Developers Worldwide [Facebook Launches 2nd Annual Hackathon With Thousands of Dollars & Trip to Facebook's Headquarters at Stake, Plus Street Cred as Developer]](http://Tftscdn.nexus404.com/Blog/wp-content/thumbs/alt/Facebook-Hacker-Cup-e1325738463933TFTSThumb150104.jpg)
![Apple iTV Already Indirectly Mocked by Samsung [Samsung Argues That It’s All About the TV Picture Quality, Implies Apple Can’t Handle It & Forgets It Has Smart TVs of Its Own]](http://nexus404.com/Blog/wp-content/thumbs/Apple-TV-logo-with-Apple-TV-on-ScreenTFTSThumb150104.jpg){kind=logo}
![Unofficial Siri Ports Turned Off by Apple Ahead of iPad 3 Launch? [Apple Reportedly Interested in Stopping Siri on Non-iPhone 4S Devices, A Workaround Apple’s Fix Already Available]](http://nexus404.com/Blog/wp-content/thumbs/iPhone-4S-logo-with-White-iPhone-4S-and-Siri-logoTFTSThumb150104.jpg){kind=logo}
![iPad 3 With 4G LTE Coming From Verizon, AT&T But Not Sprint [New Report Mentions LTE Capabilities for the Next-gen iPad 3 Again, Implies iPhone 5/6 Will Also Have Them]](http://nexus404.com/Blog/wp-content/thumbs/ipad-3-illustration-header-imageTFTSThumb150104.jpg)
![Readability App Expected Soon For Android & iOS [Readability Update: iOS App Is Waiting On Apple's Approval & The Android App Is Coming "Very" Soon]](http://nexus404.com/Blog/wp-content/thumbs/readability-for-android-480x480TFTSThumb150104.jpg)
![AT&T Increases Upgrade Costs From $18 To $36 [After Trying To Buy T-Mobile & Increasing Data Plan Prices, AT&T Decides To Double More Fees, Citing "Sophisticated Devices"]](http://nexus404.com/Blog/wp-content/thumbs/ATT-Upgrade-Fee-IncreaseTFTSThumb150104.jpg)
![iPad 3 8-inch Tablet Coming According To Industry Insiders [Apple Said To Be Preparing Smaller, Cheaper iPad To Compete Against Amazon Kindle Fire, Samsung Galaxy Tab]](http://nexus404.com/Blog/wp-content/thumbs/iPad-8-Inch-TabletTFTSThumb150104.jpg)
![Whitney Houston Music Prices Raised After Singer's Death, Apple Incorrectly Blamed [iTunes Whitney Houston Album Price Hikes Blamed On Apple When Sony Music Is True Culprit]](http://nexus404.com/Blog/wp-content/thumbs/Whitney-Houston-iTunesTFTSThumb150104.jpg)
![Google-Motorola Deal Approved by Both European Commission & Department of Justice [EU & DoJ Okay Google’s Proposed Motorola Acquisition, EU Makes Specific FRAND Patents Remarks]](http://nexus404.com/Blog/wp-content/thumbs/Motorola-Xoom-tablet-with-google-logo-and-motorola-logo1TFTSThumb150104.jpg){kind=logo}
FACEBOOK
TWITTER
RSS FEED
MAILFeatured News
![Samsung Galaxy Tab 2 7-inch Tablet Announced In Europe [Samsung Announces New Android Tablet For Europe With Android 4.0, 1GHz Dual-Core Processor, But No Pricing Announced For UK]](http://Tftscdn.nexus404.com/Blog/wp-content/thumbs/alt/Samsung-Galaxy-Tab-2-7-inche-with-tab-logo-and-samsung-logoTFTSThumb155107.jpg){kind=logo}
![HTC Endeavor Specs & Features Uncovered in Leaked ROM Updated Utility [Upcoming HTC Android 4.0 Smartphone to Offer Quad-Core CPU, ICS with Sense UI on Top]](http://Tftscdn.nexus404.com/Blog/wp-content/thumbs/alt/HTC-Endeavor-home-screen-with-htc-logoTFTSThumb155107.jpg)
![LG CX2 Optimus 3D 2 Render Image Leaks [A New Image Of The LG CX2, Aka Optimus 3D 2 Smartphone Has Leaked With Specs, Announcement Still Expected To Arrive During Mobile World Congress]](http://Tftscdn.nexus404.com/Blog/wp-content/thumbs/alt/LG-CX2-Optimus-3D-2-with-LG-logoTFTSThumb155107.jpg)
![iPad 3 Announcement Scheduled for March 7, Release Date Thereafter? [iPad 3 With Retina Display, Quad-Core A6 Chip & 4G LTE Support to Be Unveiled on March 7]](http://Tftscdn.nexus404.com/Blog/wp-content/thumbs/alt/ipad-3-illustration-header-imageTFTSThumb155107.jpg)
Breaking News
![Apple iTV Already Indirectly Mocked by Samsung [Samsung Argues That It’s All About the TV Picture Quality, Implies Apple Can’t Handle It & Forgets It Has Smart TVs of Its Own]](http://nexus404.com/Blog/wp-content/thumbs/Apple-TV-logo-with-Apple-TV-on-ScreenTFTSThumb7048.jpg){kind=logo}
![Pandora’s Tower Gets European Release Date [Pandora’s Tower Comes To Europe In April, Nintendo Of America Still Silent On Possible North American Release]](http://nexus404.com/Blog/wp-content/thumbs/Pandoras-Tower-logoTFTSThumb7048.jpg)
![PBS' iOS Apps Tip Off Next Documentary [PBS Rolls Out The Red Carpet For Streaming & Tips Us Off About Their Next Documentary Via iOS Apps]](http://nexus404.com/Blog/wp-content/thumbs/clinton-oneTFTSThumb7048.jpg)
![Unofficial Siri Ports Turned Off by Apple Ahead of iPad 3 Launch? [Apple Reportedly Interested in Stopping Siri on Non-iPhone 4S Devices, A Workaround Apple’s Fix Already Available]](http://nexus404.com/Blog/wp-content/thumbs/iPhone-4S-logo-with-White-iPhone-4S-and-Siri-logoTFTSThumb7048.jpg){kind=logo}
![iPad 3 With 4G LTE Coming From Verizon, AT&T But Not Sprint [New Report Mentions LTE Capabilities for the Next-gen iPad 3 Again, Implies iPhone 5/6 Will Also Have Them]](http://nexus404.com/Blog/wp-content/thumbs/ipad-3-illustration-header-imageTFTSThumb7048.jpg)
![Motorola Medfield Android Ice Cream Sandwich Smartphone Leaked [First Google-Motorola-Intel Android Handset Pictured, Release Date Still a Mystery]](http://nexus404.com/Blog/wp-content/thumbs/Google-and-Motorola-with-Xoom-and-DefyTFTSThumb7048.jpg)
![Verizon Wireless Announces Additional Valentine's Day Offerings [Verizon Offering BOGO Droid RAZR Smartphones Along With A Discounted Jawbone Jambox & Free HTC Rhyme]](http://nexus404.com/Blog/wp-content/thumbs/verizon_wireless_logo_480TFTSThumb7048.jpg){kind=logo}
![Dish Network Announces The "Heartland Package" Of Channels [Dish Network Heartland Package; Available For $5 Per Month, Created For Those In Rural America & Offering Family Friendly Content]](http://nexus404.com/Blog/wp-content/thumbs/dish-network-heartland-package-480TFTSThumb7048.jpg)
The TFTS Team
