Although it's hard to believe and despite the declarations by Mark Zuckerberg, Facebook continues to suffer gaps in the safeguard of private data of its users. Only a few hours ago it was known that the data of more than half a million subscribers to the social network have been uncovered during it is not known how long in a server accessible by any user. The last and most serious breach of privacy was discovered by the security company UpGuard, which detected the existence of two massive databases hosted on Amazon AWS servers without any protection and containing data from users of the social network. UpGuard reported up to three times this situation has not been until two days ago that this content has been protected.
A research team of UpGuard detected the existence of two batches of data belonging to developers of applications for Facebook that, in 146 GB, contained private data of more than 540 million users without any protection, that is, without encrypting. One of the lots of data belonged to the Mexican site Cultura Colectiva and contained information such as the "likes" of each user, his full name, comments and more data that are worth gold for a hacker. This team discovered, on the other hand, a file with passwords that although it is suspected that they do not belong directly to Facebook, it is feared that the accounts may be compromised in the users that repeat the password.
Four months without protecting the data
UpGuard informed Cultura Colectiva of the security problem last January but today they still have not received an answer; He later informed Amazon Web Services (AWS), which responded by stating that the database owners had been notified. But the days passed and they were still accessible and it was not until April 3 when Bloomberg contacted Facebook directly informed of this problem until it was finally solved.
What have been the consequences of this serious neglect? Fernando Suárez, vice president of the General Council of Official Associations in Computer Engineering, highlights the importance of this security flaw: "One of the Internet's maxims is fulfilled, especially in the education of minors, which indicates that once you post something on the Internet, you completely lose control over that content, "he declares to EL PAÍS in reference to the possibility that these data are already in the hands of hackers.
"This is one more scandal in a growing list of scandals due to privacy issues on Facebook," explains this expert who recommends, as a precautionary measure, change passwords, use a single service and make sure that the password is activated. verification in two factors.