Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Facebook Harvested Email Contacts of 1.5 Million Users Without Their Consent

MacRumors

MacRumors

macrumors bot
Original poster
Apr 12, 2001
68,021
38,725



Facebook harvested the email contacts of 1.5 million users without their knowledge or consent and used the data to build a web of their social connections, it emerged today. Business Insider reports that Facebook began collecting the contact lists in May 2016 when new users opened a new account on the social network.

facebook-email-contacts-uploaded-800x422.jpg
Image via Business Insider

The harvesting occurred when users were offered email password verification as an option to verify their identity when signing up to Facebook, a method widely condemned by security experts. In some cases if users did enter their password, a pop-up message would appear informing them that it was "importing" their contacts, without even asking their permission to do so.

These contacts were then fed into Facebook's database systems and used to build a map of users' social links and inform recommended friends on the social network. It's not clear if the data was also used for ad-targeting purposes.

In a statement given to Business Insider, the company said that these email contacts had been "unintentionally uploaded" to Facebook when users created their account.

It also said that prior to May 2016, it offered an option to verify a user's account and voluntarily upload their contacts at the same time. However, the feature was changed and the text informing users that their contacts would be uploaded was deleted, but the underlying functionality was not. Facebook says at no point did it access the content of users' emails.
We estimate that up to 1.5 million people's email contacts may have been uploaded. These contacts were not shared with anyone and we're deleting them. We've fixed the underlying issue and are notifying people whose contacts were imported. People can also review and manage the contacts they share with Facebook in their settings.
Click to expand...
The news is just the latest addition to a long list of privacy blunders and violations by Facebook. In March, for example, it emerged that between 200 and 600 million Facebook users may have had their account passwords stored in plain text in a database accessible to 20,000 Facebook employees. Some Instagram passwords were also included.

That was followed earlier this month by news that cybersecurity researchers had discovered millions of Facebook records publicly accessible on Amazon's cloud servers, after the data was uploaded by third-party companies that work with Facebook.

In yet another development just this week, over 4,000 pages of documents from 2011 to 2015 were leaked which provide insight into how Facebook took advantage of user data while publicly promising to protect user privacy before and after its 2015 move to end broad access to user data.

Article Link: Facebook Harvested Email Contacts of 1.5 Million Users Without Their Consent
 
Article Link
https://www.macrumors.com/2019/04/18/facebook-scraped-email-contacts-of-users/
Facebook definitely has its share of ongoing problems, it’s unfortunate what it’s become over the years, especially when it doesn’t value the users privacy in mind, even when they claim too. And in today’s digital era of the Internet, privacy is crucial, and Facebook has failed on many levels. (Proud to say I’ve never had a Facebook account and now I’m glad I never did.)
 
Last edited:
  • Like
Reactions: Kengineer, bayelrey80, Oblivious.Robot and 3 others
Adam Warlock said:
This sort of thing keeps happening because there are no real consequences. A million-dollar fine per e-mail address would change things very, very quickly IMO.
Click to expand...
Not only there are no real consequences, there is literally zero effect on Facebook’s brand. The people simply don’t mind. Plus majority of Silicon Valley are part of the circle jerk with Facebook, relying on them as a platform.
 
  • Like
Reactions: LinusR, timborama, Huck and 2 others
Them.Again. Again being the trend. The more you arm them with your information freely, the more they will abuse it and take access to it for granted.
 
  • Like
Reactions: Breaking Good
macfacts said:
Why hasn't Tim removed the FB app from the store?
Click to expand...
That’s like taking heroin away from the addicts cold turkey.
[doublepost=1555587716][/doublepost]
jgbr said:
Them.Again. Again being the trend. The more you arm them with your information freely, the more they will abuse it and take access to it for granted.
Click to expand...
And people wanted Zuck to be the next president.
 
  • Like
Reactions: Huck and Breaking Good
iPhysicist said:
DELETE Facebook already. What on earth keeps this thing alive?! Every other "social" media would be dead by now.
Click to expand...

Problem is that there will always be idiots who give companies like Facebook the login data to their email account. Facebook does not need everyone to be stupid. A couple of your friends are sufficient.
 
  • Like
Reactions: Breaking Good
FB belongs to the top five richest company in the world, and their product is 100% free. Who on earth actually thinks they’re not profiting from data of the users?
If you’re fine with that (which most are), then do nothing. If you’re not, then go somewhere else. Why all the hate though?
 
No one will care, more people will sign up because they value convenience over all else, and the idea of privacy will continue to erode.
 
oneMadRssn said:
It’s not even a concern anymore.

A concern is worrying about a realistic but hypothetical issue.

Facebooks privacy issues stopped being concerns long ago, and have become full-blown problems. Facebook is actively reckless with user privacy.
Click to expand...

What is privacy?
 
MacRumors said:



Facebook harvested the email contacts of 1.5 million users without their knowledge or consent and used the data to build a web of their social connections, it emerged today. Business Insider reports that Facebook began collecting the contact lists in May 2016 when new users opened a new account on the social network.

facebook-email-contacts-uploaded-800x422.jpg

Image via Business Insider

The harvesting occurred when users were offered email password verification as an option to verify their identity when signing up to Facebook, a method widely condemned by security experts. In some cases if users did enter their password, a pop-up message would appear informing them that it was "importing" their contacts, without even asking their permission to do so.

These contacts were then fed into Facebook's database systems and used to build a map of users' social links and inform recommended friends on the social network. It's not clear if the data was also used for ad-targeting purposes.

In a statement given to Business Insider, the company said that these email contacts had been "unintentionally uploaded" to Facebook when users created their account.

It also said that prior to May 2016, it offered an option to verify a user's account and voluntarily upload their contacts at the same time. However, the feature was changed and the text informing users that their contacts would be uploaded was deleted, but the underlying functionality was not. Facebook says at no point did it access the content of users' emails.
The news is just the latest addition to a long list of privacy blunders and violations by Facebook. In March, for example, it emerged that between 200 and 600 million Facebook users may have had their account passwords stored in plain text in a database accessible to 20,000 Facebook employees. Some Instagram passwords were also included.

That was followed earlier this month by news that cybersecurity researchers had discovered millions of Facebook records publicly accessible on Amazon's cloud servers, after the data was uploaded by third-party companies that work with Facebook.

In yet another development just this week, over 4,000 pages of documents from 2011 to 2015 were leaked which provide insight into how Facebook took advantage of user data while publicly promising to protect user privacy before and after its 2015 move to end broad access to user data.

Article Link: Facebook Harvested Email Contacts of 1.5 Million Users Without Their Consent
Click to expand...
Facebook is the devil
 
Of course they did because they are actually evil in every sense of the word. Just wait until you find out the next awful thing that they did tomorrow and the ones next week are going to be a doozy.
 
  • Like
Reactions: Huck
johannnn said:
FB belongs to the top five richest company in the world, and their product is 100% free. Who on earth actually thinks they’re not profiting from data of the users?
If you’re fine with that (which most are), then do nothing. If you’re not, then go somewhere else. Why all the hate though?
Click to expand...

Because Facebook isn't just harvesting the information from its users. They also harvest the information of the contacts of the users. Those people have not given Facebook permission to use their information.
 
  • Like
Reactions: JonnyBlaze and justperry
Ok, honestly - I've had enough.

But my FB usage is almost entirely through groups: my soccer team, car club, kid's school stuff... and I'm not dumb enough to think that I can convince all my groups to get off of FB.

Question: Would I be less prone to this crap if I just used the web version and changed notifications to just email me when a post happened in my groups?
 
  • Like
Reactions: decafjava
Just like Gruber says: if they’re saying 1.5 million, you can bet the real number is higher and we’ll find out in a few days. They always try and downplay the actual number of affected users.

Disgusting company.
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back