A few days before CEO Mark Zuckerberg said Facebook is becoming a more privacy-friendly company. A cyber-security company, Imperva, has published details about the Facebook Messenger bug, which allows hackers to learn who you are talking to on the popular chat application.
The error was discovered last year and exposed who you are talking to. The error did not show the content of the messages being exchanged, but simply knows who you were contacting. This raises new questions about the privacy risks faced by a Facebook user.
Ron Maasas, a security researcher who discovered the error, said: "It could be sent to high-profile goals to figure out who was talking to whom."
Browser that used Facebok, iFrames could gather information such as access to likes, location history, and facebok users' interests. The hacker they could integrate content into ads and webpages, giving users the ability to click on a malicious link. This redirects users to infected pages where the attacker asks you to see the contacts on their Facebook sender.
Facebook said on Thursday it has taken care of the matter by completely removing iFrames from messenger.
In a similar mistake last November, hackers could see private posts you liked and what your friends like.
These reports were released only when Mark Zuckerberg promised increased privacy on Facebook after multiple data breach scandals, which originally began with Cambridge Analytica. Zuckerberg said yesterday that Facebook will focus on encryption and messages will be automatically deleted after a certain amount of time.