Facebook Privacy Security Flaw

This evening I just discovered this issue with the Facebook iPhone application.  If you create a new album with the iPhone app, the privacy settings for this album will be set to everyone!

Steps to reproduce:

  1. Go to Photos in the facebook iPhone application
  2. Press + to add a new album
  3. Enter an album name
  4. Click Create (note the lack of Privacy setting)
  5. Now open a web browser. Go to your profile and click on Photos.
  6. Click Album Privacy
  7. You will see this:
  8. However if you create a new album with the web browser interface the default security is correct:

I have reported this to facebook as a bug – they have not commented as yet.

My advice is to check your privacy settings if you have been creating photo albums on your iPhone!

Update 15/04/2010: Facebook have responded acknowledging this as a bug:

—– Original message —–
From: “Facebook Support” <xxxx@support.facebook.com>
To: matt@xxx
Date: Wed, 14 Apr 2010 17:58:08 -0700
Subject: Re: My updated privacy settings are not functioning correctly: iphone facebook app default settings…

Hi Matt,

We are aware of the problem that you described and apologize for the inconvenience.  Unfortunately, we do not have a specific date for when this issue will be resolved but hope to fix it as soon as possible. We appreciate your patience.

Thanks for contacting Facebook.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s