Monday, March 3, 2025
HomeInternetFacebook Bug Leaks 14 Million Users New Private Posts in Public by...

Facebook Bug Leaks 14 Million Users New Private Posts in Public by Default

Published on

SIEM as a Service

Follow Us on Google News

A New Facebook bug allows automatically suggested around 14 Million users new posts set in public by default from May 18 to May 22.

Facebook provides a privacy setting to set the users post in various categories such as “Public” (anyone), “Friends”, or “Friends and Connections”.

Due to this Facebook’s internal Error, the post could be read by anyone can see regardless of default setting which already set by users.

For Example, when the users set their privacy setting as “Private” then they will share their post which should remain private.

But the post could be read by anyone and it doesn’t care about the user’s Default privacy setting due to this Bug.

According to CNN, Facebook posts typically default to the last “audience” a post was shared with, such as family members, friends, or friends except for their boss. That default was changed to the public for the 14 million users, but if affected users noticed, they could have manually switched the setting themselves.

This Error Occurred when Facebook tried to implement the new futures on the user’s profile, like a photo.

Since the future items are public, the suggested audience for all new posts –0 not just these items – was set to public.

Also, Facebook cleared that this bug did not impact anything people had posted before, and they could still choose their audience just as they always have.

Facebook bug has been fixed and they changed the audience back to what they’d been using before for all the affected users.

We’ve heard loud and clear that we need to be more transparent about how we build our products and how those products use your data – including when things go wrong. And that is what we are doing here. Facebook said.

Also Read:

Beware !! Chrome Spyware Extensions Stealing Facebook Data, Location and Millions of Users Browser History

3 Million Facebook Users Highly Sensitive Data Leaked by Personality App, called myPersonality in Last 4 Years

Facebook’s New Tool to Detect and Alert Website Owners About Phishing Attacks

100,000 Users Infected With the Password Stealing Malicious Chrome Extension Distributed Through Facebook

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Threat Actors Exploiting AES Encryption for Stealthy Payload Protection

Cybersecurity researchers have uncovered a surge in the use of Advanced Encryption Standard (AES)...

33.3 Million Cyber Attacks Targeted Mobile Devices in 2024 as Threats Surge

Kaspersky's latest report on mobile malware evolution in 2024 reveals a significant increase in...

Routers Under Attack as Scanning Attacks on IoT and Networks Surge to Record Highs

In a concerning trend, the frequency of scanning attacks targeting Internet of Things (IoT)...

Google Launches Shielded Email to Keep Your Address Hidden from Apps

Google is rolling out a new privacy-focused feature called Shielded Email, designed to prevent apps...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

Chinese Hackers Breach Belgium State Security Service as Investigation Continues

Belgium’s State Security Service (VSSE) has suffered what is being described as its most...

Check Point Software to Open First Asia-Pacific R&D Centre in Bengaluru, India

Check Point Software Technologies Ltd. has announced plans to establish its inaugural Asia-Pacific Research...

Threat Actors Trojanize Popular Games to Evade Security and Infect Systems

A sophisticated malware campaign was launched by cybercriminals, targeting users through trojanized versions of...