06 November 19, 17:27
(This post was last modified: 06 November 19, 17:28 by silversurfer.)
Quote:Facebook said that private group member information such as names and profile pictures might have been accessed by approximately 100 developers of primarily video streaming and social media management apps.
This happened after Facebook restricted or removed several developer APIs, including the Groups API, the one that provided the app devs with extended access to group info for longer than intended after their apps retained access to the data.
"Today we are also reaching out to roughly 100 partners who may have accessed this information since we announced restrictions to the Groups API, although it's likely that the number that actually did is smaller and decreased over time," said Konstantinos Papamiltiadis, Facebook Director of Developer Platforms & Programs.
"We know at least 11 partners accessed group members’ information in the last 60 days," Papamiltiadis also added in the blog post announcing changes to Groups API access.
Quote:"Before April 2018, group admins could authorize an app for a group, which gave the app developer access to information in the group. But as part of the changes to the Groups API after April 2018, if an admin authorized this access, that app would only get information, such as the group’s name, the number of users, and the content of posts. For an app to access additional information such as name and profile picture in connection with group activity, group members had to opt-in. - Konstantinos Papamiltiadis"
Read more: https://www.bleepingcomputer.com/news/se...s-api-bug/