*Researcher Uncovers (Another) Major Facebook Security Exploit * For all the credit Facebook has received for its privacy controls and user safety, the site still falls prey to an unsettling number of security issues<http://techcrunch.com/2009/11/05/massive-facebook-and-myspace-flash-vulnerability-exposes-user-data/>and potential data breaches. Last month a botched code push accidentally revealed <http://www.techmeme.com/100330/p78#a100330p78> private user email addresses, and before that Facebook accidentally sent private messages<http://techcrunch.com/2010/03/01/facebook-code-testing-bug/>to the wrong recipients. Today, security engineer Joey Tyson, AKA theharmonyguy <http://theharmonyguy.com/>, has detailed<http://theharmonyguy.com/2010/04/10/facebook-platform-vulnerability-enabled-silent-data-harvesting/>a major security hole in Facebook Platform — one that would allow a malicious website to silently access a user’s profile information, photos, and in some cases, messages and wall posts, with no action required on the user’s part.
http://techcrunch.com/2010/04/10/researcher-uncovers-another-major-facebook-security-exploit/ Not intended as a dig at facebook specifically, but is this a strong argument against trusting your personal data, to propriety software in the cloud?
