Yet Another Facebook Quiz App Has Exposed Data of 120 Million Users

Weeks subsequently the Cambridge Analytica scandal rocked the world, some other Facebook app has been found leaving user data unsecured. Popular quizzing app NameTests has been establish to have exposed the personal data of most 120 one thousand thousand users.

As reported past security researcher Inti De Ceukelaire in a Medium postal service, the NameTests quizzes are created by a German app maker Social Sweethearts, known for quizzes like 'Which Disney Princess Are You?' or 'What Historic period Do You lot Look' that are insanely popular on Facebook. If you or anyone you know has answered one of these eye-grabbing quizzes then your data may accept been exposed.

NameTests has most 120 million monthly users taking its quizzes and Ceukelaire says an underlying JavaScript file siphoned off personal Facebook data such as user's Facebook ID, first and terminal name, languages spoken, gender, date of birth, photos, friend lists, devices, forth with posts and status updates. This is pretty much everything Facebook has on yous. Ceukelaire says the data had been exposed since at least 2016 and could've easily been grabbed by anyone who had admission to the backdoor.

He further decided to set upward a website that requested all the information NameTests pulled from users taking ane of its quizzes and stored their information in the aforementioned JavaScript file. This helped him make the surprising discovery that y'all only had to take one quiz to give access to all your Facebook info to the quiz maker for 2 months. Ceukelaire even has evidence of the process right here:

Ceukelaire contacted Facebook in April and spoke to them multiple times and Facebook's Data Corruption Program is supposedly actively working to accost such complaints. NameTests just recently fixed the issue and the security researcher was awarded $4000 bug bounty by Facebook, which was doubled when he donated it to charity, for discovering the loophole.

In improver, in a statement to TechCrunch, Social Sweethearts' data protection officer has denied any misuse of the exposed data. The app maker also issued an official argument, which says,

"Our investigation found that in that location was no evidence that personal information of users was disclosed to unauthorized third parties and all the more that at that place was no evidence that it had been misused. Still, data security is taken very seriously at Social Sweethearts and measures are currently being taken to avoid risks in the time to come."

Facebook is currently under scrutiny from all sides – be it the Congress or EU and it needs to make the users experience safe, instead of thinking of new data leaks every other day. Nosotros simply get the feeling there are a lot more than apps and quizzes which have done this over the years and NameTests is just one of them.

The question facing many users is what to do if you have always answered i of these quizzes, and the app is no longer on Facebook. In that case, you lot are out of luck, especially if you want to use Facebook for any corporeality of time.

Source: https://beebom.com/nametests-facebook-quiz-app-exposed-data/

Posted by: leehaile1944.blogspot.com

Share this post