Close
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Applications
    • Applications
    • Cybersecurity
    • Development
    • IT Management

    Why Facebook Applications Expose User IDs

    By
    Brian Prince
    -
    October 18, 2010
    Share
    Facebook
    Twitter
    Linkedin

      Facebook has found itself in the middle of another privacy flap.

      This time, the Wall Street Journal uncovered that many Facebook applications are sharing user information with advertising networks and other Internet-tracking companies. According to the Journal, some of the most popular applications on Facebook-including Mafia Wars, FarmVille and Texas HoldEm Poker-are transmitting Facebook ID information to outsiders.

      The information can be used to look up a Facebook user’s name and any other information a user allows to be shared publicly. In some cases, the information also included the Facebook IDs of an application user’s friends, the Journal reported.

      Among the companies mentioned by the Journal is the business-to-business firm Rapleaf, which said that once it discovered Facebook IDs were being passed to ad networks by applications it works with, the company immediately “implemented a solution to cease the transmissions.”

      “As of last week, no Facebook [IDs] are being transmitted to ad networks in conjunction with the use of any Rapleaf service,” according to the company blog.

      Rapleaf was cited by the Journal for linking Facebook user IDs taken from apps to its own database of Internet users-which it sells-as well as sending Facebook IDs it obtained to a dozen other firms. According to the company, the underlying issue is due to the HTTP referrer.

      “If you are visiting a site that knows your identity (i.e. any site you’re logged into), then this site may receive referrer URLs of other pages on the web that you have visited,” according to the Rapleaf blog. “For example, you may visit a web page about a particular medical condition, click a link on that page to a site that knows your identity, and now that site can associate your identity with having visited that particular medical webpage.”

      Websites need to take care to not include personally identifying information that may get placed in referral URLs when linking to external Websites, according to Rapleaf.

      “Secondly, we need to give deeper thought to whether or not the privacy risks associated with referral URLs can be adequately managed,” the blog continued. “Referral URLs are used by most web sites for constructive purposes (e.g. link statistics, or preventing hotlink bandwidth theft).”

      For its part, Facebook has said the problem has been exaggerated, as no private information belonging to users was revealed.

      “Our policy is very clear about protecting user data, ensuring that no one can access private user information without explicit user consent,” blogged Facebook engineer Mike Vernal. “Further, developers cannot disclose user information to ad networks and data brokers. We take strong measures to enforce this policy, including suspending and disabling applications that violate it.”

      In most cases, he added, the developers did not intend to pass the user IDs, but did so because of the “technical details of how browsers work.”

      The Journal report found the reviewed applications were sending Facebook ID numbers to at least 25 advertising and data firms, including several that build profiles of Internet users by tracking their online activities.

      Vernal noted that the company dealt with a similar option uncovered by the Journal in May, “although the technical challenges here are greater.” Inthe May incident, it was discovered that in some cases, users’ IDs were shared with advertisers on Facebook by the users’ browser when they clicked on an ad.

      “We are talking with our key partners and the broader Web community about possible solutions,” Vernal blogged. “We will have more details over the course of the next few days.”

      Brian Prince

      MOST POPULAR ARTICLES

      Android

      Samsung Galaxy XCover Pro: Durability for Tough...

      Chris Preimesberger - December 5, 2020 0
      Have you ever dropped your phone, winced and felt the pain as it hit the sidewalk? Either the screen splintered like a windshield being...
      Read more
      Cloud

      Why Data Security Will Face Even Harsher...

      Chris Preimesberger - December 1, 2020 0
      Who would know more about details of the hacking process than an actual former career hacker? And who wants to understand all they can...
      Read more
      Cybersecurity

      How Veritas Is Shining a Light Into...

      eWEEK EDITORS - September 25, 2020 0
      Protecting data has always been one of the most important tasks in all of IT, yet as more companies become data companies at the...
      Read more
      Cybersecurity

      Visa’s Michael Jabbara on Cybersecurity and Digital...

      James Maguire - May 17, 2022 0
      I spoke with Michael Jabbara, VP and Global Head of Fraud Services at Visa, about the cybersecurity technology used to ensure the safe transfer...
      Read more
      Big Data and Analytics

      GoodData CEO Roman Stanek on Business Intelligence...

      James Maguire - May 4, 2022 0
      I spoke with Roman Stanek, CEO of GoodData, about business intelligence, data as a service, and the frustration that many executives have with data...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2021 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×