Facebook deals with messaging flaw
Monday 31 December 2012
Facebook has been forced to disable a messaging feature after a Welsh student uncovered a flaw allowing him to read strangers' private messages.
The New Year's Midnight Delivery feature was set up on Facebook Stories to enable users to write messages to friends to be automatically sent after midnight.
Aberystwyth University student Jack Jenkins discovered that by tweaking the Url after sending a message, he could read and even delete other users' messages.
He blogged about the error, writing: "I just wanted to share this. I don't know how a site like Facebook can continue to take these kinds of risks. PLEASE Don't go deleting random messages, but try and delete one of mine that I set up especially if you want."
Facebook promptly disabled the feature upon discovering the issue.
A spokesman for Facebook confirmed that the site is back up and running again, and that it had been taken offline for a time while they dealt with the issue.
Facebook Stories is a separate site from the main Facebook site, and does not affect messaging on Facebook itself.
The error comes after a picture posted by Facebook founder Mark Zuckerberg's sister led to her claiming her privacy had been breached after a marketing director tweeted the private family photograph that Zuckerberg had shared on her personal Facebook page.
Life & Style blogs
McDonald’s launches clothing line using Big Mac prints
Facebook to test 747-sized drones that will beam broadband to the entire world
The distress of some Zayn Malik fans is real, and they need support, say experts
Chair-bound workers 'should move around every hour to reduce physical and mental health risks'
The truth about student sex workers: it's far from Belle Du Jour
Nigel Farage brands LGBT activists 'filth' and 'scum' and accuses them of scaring away his children after they invade his local pub
Ukip supporters are 55 or older, white and socially conservative, finds British Social Attitudes Report
JK Rowling responds to fan tweeting she 'can't see' Dumbledore being gay
Russia threatens Denmark with nuclear weapons if it tries to join Nato defence shield
Jeremy Clarkson sacked live: Alan Yentob 'wouldn't rule out' ex Top Gear host's BBC return
Germanwings plane crash live: Andreas Guenter Lubitz intentionally crashed flight 9525 into the Alps in act of mass murder and suicide – latest
- 1 Germanwings crash: Police make 'significant discovery' at home of co-pilot Andreas Lubitz
- 2 Germanwings captain Patrick Sondenheimer tried to break into locked cockpit door 'with an axe' as plane was descending
- 3 Zayn Malik already working on solo material, just days after quitting One Direction
- 4 The West has it totally wrong on Lee Kuan Yew
- 5 #FreeTheNipple: Women in Iceland bare breasts in solidarity with trolled student
iJobs Gadgets & Tech
£30000 - £40000 per annum: Recruitment Genius: Our client is looking to find a...
£21000 - £23600 per annum: Recruitment Genius: An exciting opportunity to join...
£22000 - £28000 per annum: Ashdown Group: This is a large multi-site operation...
£50000 - £65000 per annum: Recruitment Genius: Due to continued business growt...