Facebook Messenger security breach allowed malicious people to see who the user was in contact with. Despite this, the hacker did not have access to the content of the conversations. The issue was resolved in December 2018 by the Facebook messenger, but only went public on Thursday (7) by the virtual security company Imperva, responsible for detecting the error. In response to TechTudo, Mark Zuckerberg's social network stated that the messenger update was intended to prevent browser risk behaviors and recommended that developers and web standards groups take steps to prevent such problems.
According to the company, the method for obtaining this data would be made from a malicious website that would indicate the amount of people with whom there was or in interaction on the platform. There is no information on the number of users that may have been put at risk during the month in which the fault was active. Available for Android and iPhone (iOS) phones, Facebook Messenger was the most downloaded app last year, according to research by App Annie, a mobile market analysis company.
How to uninstall Messenger from phone
Facebook Messenger targeted by criminals interested in private account data Photo: Luciana Maline / TechTudo
Want to buy a cell phone, TV and other discounted products? Meet the Compare TechTudo
To get inside information, the dangerous site needed people to click on the address, and then the content hosted on the platform was put at risk. However, exploitation of the failure was not limited to the messenger only. When browsing Chrome with Facebook logged in, if the user visited the malicious link you would also be likely to have your account revealed to criminals.
The situation surfaced the same week as the integration of social networking, WhatsApp and Instagram was announced, with the promise of security investments made by Zuckerberg. The proposal released on Wednesday (6) includes adopting end-to-end encryption in place on WhatsApp, a system that prevents message interception, and incorporating a validity for publications, similar to Stories.
Remind Facebook security holes
Facebook has a history of polemics that involve weak privacy of users' personal content. In December, for example, a bug exposed photos of 6.8 million people on the platform, which could be seen after the user granted permission for third-party applications to connect to social media. An even bigger attack hit 50 million users in September last year, when hackers broke into the system through the "see how" function and were able to obtain private data. At the time, Facebook had to log out all accounts for security reasons.
What is your favorite social network? Give your opinion on the TechTudo Forum.
How to hide when online in Facebook Messenger