Facebook has a problem with private links

  • 0 Replies

Offline Bugbatter

  • Microsoft® MVP
  • Administrator
  • Diamond Member
  • 10577
Facebook has a problem with private links
« on: June 10, 2016, 09:39:39 PM »

Developers are able to view privately shared links by querying the company's database

Facebook has a link problem. Earlier this week, a security researcher named Inti De Ceukelaire detailed a curious fact about how Facebook Messenger treats privately shared links. Through the right API call, De Ceukelaire was able to summon links shared by specific users in private messages. The links were collected by the Facebook crawler, where De Ceukelaire discovered they were easily accessible to anyone running a Facebook app. Those links could be anything from a popular news story to directions to an abortion clinic. As long as they’re shared in private messages, they’re logged in Facebook’s database, and accessible to API calls.


Microsoft MVP Consumer Security 2006-2016
Microsoft Windows Insider MVP 2016-