Slashdot Mirror
Facebook Admits SMS Notifications Sent Using Two-Factor Number Was Caused by Bug (theverge.com)
Facebook has clarified the situation around SMS notifications sent using the company's two-factor authentication (2FA) system, admitting that the messages were indeed caused by a bug. From a report: In a blog post penned by Facebook Chief Security Officer Alex Stamos, the company says the error led it to "send non-security-related SMS notifications to these phone numbers." Facebook uses the automated number 362-65, or "FBOOK," as its two-factor authentication number, which is a secure way of confirming a user's identity by sending a numeric code to a secondary device like a mobile phone. That same number ended up sending users Facebook notifications without their consent. When users would attempt to get the SMS notifications to stop, the replies were posted to their own Facebook profiles as status updates.
An intern on the Product team mistakenly labeled it as a feature.
Sorry, an intern on the product team mistakenly labeled it as a feature.
Without even checking, it seems obvious that 362-65 isn't FBOOK... there's no doubles.
gathers G.A.Y N1GGERS from all over America and abroad for one common goal - being G.A.Y N1GGERS.
Are you G.A.Y ?
Are you a N1GGER ?
Are you a G.A.Y N1GGER ?
If you answered "Yes" to any of the above questions, then G_N_A_A (G.A.Y N1GGER ASSOCIATION OF AMERICA) might be exactly what you've been looking for!
Join G_N_A_A (G.A.Y N1GGER ASSOCIATION OF AMERICA) today, and enjoy all the benefits of being a full-time G_N_A_A member.
G_N_A_A (G.A.Y N1GGER ASSOCIATION OF AMERICA) is the fastest-growing G.A.Y N1GGER community with THOUSANDS of members all over United States of America. You, too, can be a part of G_N_A_A if you join today!
Why not? It's quick and easy - only 3 simple steps!
First, you have to obtain a copy of G.A.Y N1GGERS FROM OUTER SPACE THE MOVIE and watch it.
You can watch G.A.Y N1GGERS FROM OUTER SPACE on Youtube.
Second, you need to succeed in posting a G_N_A_A "first post" on slashdot.org , a popular "news for trolls" website
Third, you need to join the official G_N_A_A irc channel #G_N_A_A on EFNet, and apply for membership.
Talk to one of the ops or any of the other members in the channel to sign up today!
If you are having trouble locating #G_N_A_A, the official G.A.Y N1GGER ASSOCIATION OF AMERICA irc channel, you might be on a wrong irc network. The correct network is EFNet, and you can connect to irc.secsup.org or irc.easynews.com as one of the EFNet servers.
If you do not have an IRC client handy, you are free to use the G_N_A_A Java IRC client by clicking here.
If you have mod points and would like to support G_N_A_A, please moderate this post up.
This post brought to you by Penisbird , a proud member of the G_N_A_A
G_____________________________________naann_______ ________G
N_____________________________nnnaa__nanaaa_______ ________A
A____________________aanana__nannaa_nna_an________ ________Y
A_____________annna_nnnnnan_aan_aa__na__aa________ ________*
G____________nnaana_nnn__nn_aa__nn__na_anaann_MERI CA______N
N___________ana__nn_an___an_aa_anaaannnanaa_______ ________I
A___________aa__ana_nn___nn_nnnnaa___ana__________ ________G
A__________nna__an__na___nn__nnn___SSOCIATION_of__ ________G
G__________ana_naa__an___nnn______________________ ________E
N__________ananan___nn___aan_IGGER________________ ________R
A__________nnna____naa____________________________ ________S
A________nnaa_____anan____________________________ ________*
G________anaannana________________________________ ________A
N________ananaannn_AY_____________________________ ________S
A________ana____nn_________IRC-EFNET-#G_N_A_A________ ________S
A_______nn_____na_________________________________ ________O
*_______aaaan_____________________________________ ________C
Gary Niger gary_niger@G_N_A_A.us G_N_A_A Corporate Headquarters 143 Rolloffle Avenue Tarzana, California 91356
Enid Al-Punjabi enid_al_punjabi@G_N_A_A.us G_N_A_A World Headquarters No.33 Kyutei Bld. 2F, Shinjuku 2-11-7, Shinjuku-ku, Tokyo, Japan ????????2??11-6
Copyright (c) 2003-2015 G.A.Y N1GGER Association of America
Ich Bindawalross (London) - G_N_A_A (NYSE:
.....
No. No it is not.
Some may be stupid enough to believe that, but not I.
We are very sorry we prematurely started sending you Facebook advertisements using the phone number you provided for 2-step verification. Our intention was to not do so until we had finished our latest marketing plan and updated the wording of our terms of service.
Please accept our apologies. We hope you continue to enjoy Facebook and provide us with what little of your valuable personal information we have not already collected.
- Your Facebook Team
#DeleteChrome
I am at a loss as to how this could be a bug. We almost all here write code, making a computer do anything requires effort, concentration and time.
This was done on purpose. To what end I do not know but the idea that through some mystery code all this happened is just not logical, it makes much more sense that it was crafted to perform the actions it performed.
At some point in the code during the authentication process it had to capture the response, that response then had to be applied to a users 'wall' which again is not an easy task and takes time, concentration and effort to make it perform this action.
I call BS, facebook did this on purpose, why is unknown, but the amount of effort to create this situation goes beyond a bug and into the realm of the deliberate.
Just here passing out the *hugs*!
A bug? or someone who doesn't know what they are doing? Facebook is not a site I would choose to share much personal information with.
book.
as pointed out by numerous previous slashdot linked articles it's very easy to transfer phone numbers without the original owners permission.
It might have been a test -- "how far can we turn up the heat before the frogs jump out?" This time, they found the answer was 'too hot', but that's still good data for them.
but the computer is apparently perfectly capable of being the fall guy.
I hate msmash. Not only does he serve up MS propaganda but now Facebook too? I hope slashdot is being paid for this shit.
> Facebook has clarified the situation around SMS notifications sent using the company's two-factor authentication (2FA) system,
"Clarified" implies they are being honest and clear about something the public misunderstood,
> admitting that the messages were indeed caused by a bug.
Putrid shilling by msmash here: "Indeed caused by a bug".
To quote another poster "I am at a loss as to how this could be a bug. We almost all here write code, making a computer do anything requires effort, concentration and time. This was done on purpose."
So fuck you msmash.
The entire business model of Facebook is to spy on you. There is no way around it; users have to put a hard, perpetual boycott on Facebook. Drive it out of business form lack of demand.
You think we're idiots, don't you.
It's not that some facebook system accidentally send messages that worries me. It's the fact that a random facebook system had access to a phone number given in the context of setting up 2FA. That tells me that facebook does not internally treat 2FA numbers as private and secure information.
It is easier to ask for forgiveness afterward than to ask for permission beforehand. A bug? Yeah, I'll buy that, and the Brooklyn Bridge. To go, please.
Who cares if it was a bug. Its still illegal to ignore STOP messages and they should still be fined the maximum amount.
The bug was they got caught and someone fussed about it.