Slashdot Mirror

← Back to Stories (view on slashdot.org)

My Cow Game Extracted Your Facebook Data (theatlantic.com)

Posted by msmash on from the cowpocalypse dept.

Ian Bogost, writing for The Atlantic: Already in 2010, it felt like a malicious attention market where people treated friends as latent resources to be optimized. Compulsion rather than choice devoured people's time. Apps like FarmVille sold relief for the artificial inconveniences they themselves had imposed. In response, I made a satirical social game called Cow Clicker. Players clicked a cute cow, which mooed and scored a "click." Six hours later, they could do so again. They could also invite friends' cows to their pasture, buy virtual cows with real money, compete for status, click to send a real cow to the developing world from Oxfam, outsource clicks to their toddlers with a mobile app, and much more. It became strangely popular, until eventually, I shut the whole thing down in a bovine rapture -- the "cowpocalypse." It's kind of a complicated story.

But one worth revisiting today, in the context of the scandal over Facebook's sanctioning of user-data exfiltration via its application platform. It's not just that abusing the Facebook platform for deliberately nefarious ends was easy to do (it was). But worse, in those days, it was hard to avoid extracting private data, for years even, without even trying. I did it with a silly cow game. Cow Clicker is not an impressive work of software. After all, it was a game whose sole activity was clicking on cows. I wrote the principal code in three days, much of it hunched on a friend's couch in Greenpoint, Brooklyn. I had no idea anyone would play it, although over 180,000 people did, eventually. And yet, if you played Cow Clicker, even just once, I got enough of your personal data that, for years, I could have assembled a reasonably sophisticated profile of your interests and behavior. I might still be able to; all the data is still there, stored on my private server, where Cow Clicker is still running, allowing players to keep clicking where a cow once stood, before my caprice raptured them into the digital void.

55 comments

  1. omg did u hear what elon sed by Anonymous Coward · · Score: 0

    shit about facebook that matters

  2. Cow clicker? by Oswald+McWeany · · Score: 5, Funny

    Cow Clicker? That sounds like a more accurate name for Tinder.

    --
    "That's the way to do it" - Punch
    1. Re:Cow clicker? by Anonymous Coward · · Score: 1

      Swipe left if you want the heifer. Swipe right if you want the steer. Swipe down if you want to see its rear. Swipe up if you want to stare at a ribeye steak.

    2. Re:Cow clicker? by QuadEddie · · Score: 1

      I don't need to read any further comments. You win.

    3. Re:Cow clicker? by Anonymous Coward · · Score: 0

      Cow Clicker? That sounds like a more accurate name for Tinder.

      Americans are fat, stupid*, inattentive, and act like herd animals. Just like cows! Heh I guess you really ARE what you eat.

      * Actually a truly stupid person cannot help themselves so compassion is an appropriate response. Average Americans simply hate learning new things (unless a boss demands it) and hate to think. Rather than viewing it as a muscle to be exercised and strengthened, they see thinking as a scarce resource to be conserved at all costs. So yes, they're worse than stupid.

      And oh boy are they ever fat! It amazes me how many Americans drive these huge inefficient off-road vehicles just to cart their lard-asses to work on nice paved roads. Why? Because big trucks come with bigger seats for their bigger asses. That's why. Of course some of them may be trying (and failing) to compensate for a small penis. They can't seem to stay in their lanes very well either. I want to see two vehicles both try to be on the double-yellow at the same time! It's so rare you see assholes get what they deserve.

    4. Re:Cow clicker? by mikael · · Score: 0

      I know just the video for you:

      https://www.youtube.com/watch?...

      --
      Vintage computer adverts: http://www.vintageadbrowser.com/computers-and-software-ads
    5. Re:Cow clicker? by Anonymous Coward · · Score: 0

      I know just the video for you:

      https://www.youtube.com/watch?...

      Not a double yellow. Not a crash. Not an SUV or other offroad vehicle. No indication of a lard-ass though in America that can be safely ass-umed. Barely one out of three. You're a dumb nígger.

  3. cDc by b0s0z0ku · · Score: 3, Funny

    Remember the hacker group "Cult of the Dead Cow?" Never trust the Bovine Threat.

    1. Re:cDc by nitehawk214 · · Score: 2

      My first use of Back Orifice was when a friend sent me an ICQ message, "Hey I want to hack my sister's computer, can you help me with Back Orifice."

      Knowing full well the idiot probably installed the server on his own computer instead of the client... I put BO on a throw-away computer, pointed it at his computer... and hit the shutdown button. Boom.

      Got to love the old days when instant messaging clients showed the ip address.

      --
      I'm a good cook. I'm a fantastic eater. - Steven Brust
    2. Re:cDc by Archangel+Michael · · Score: 1

      Oh my. Memories of CDC and Back Orifice. I even had a chance to talk with a couple of the guys from CDC. Good Times!

      --
      Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
    3. Re:cDc by Anonymous Coward · · Score: 0

      Cash cow comin' to get ya
      Why?
      Cuz you think this is stupid, don't you?
      The cash cow will not be mocked!
      The cash cow's planning a coup!
      The cash cow chews cud bigger than you!
      Woe, woe, woe to you
      Who blow off this warning
      Perhaps you've already been licked
      I, too, was hypnotized
      By those big cow eyes
      The last time I uttered those three little words
      "I deserve better!"

    4. Re:cDc by Anonymous Coward · · Score: 0

      Yeah, some friends and I wrapped all the installers on our school's shared drive with BO using Butt Trumpet. That place was owned for years. At 2PM every day, every CD-ROM tray in the school would open.

    5. Re:cDc by Train0987 · · Score: 1

      The OOB bug in Windows 95-98 was the best. Blue-screen anyone on IRC. Fun times then, prison sentence now.

    6. Re:cDc by Anonymous Coward · · Score: 0

      We are still out here. Moo.

    7. Re:cDc by Anonymous Coward · · Score: 0

      We are still out here. Moo.

      Dead cows don't moo, you fucktard.

    8. Re: cDc by Anonymous Coward · · Score: 0

      The con/con bug was great too. Especially on AOL which would load sounds in chat rooms. Play sound con/con and everyone is gone. No need for IPs, just disable your chat sounds first or it'll get you too.

  4. What Scandal? by Anonymous Coward · · Score: 2, Insightful

    Obama's social media app collected all the information about people's friends when someone installed it and they bragged about using this data to successfully target people for votes. Everything you put on Facebook is being sold to some advertiser or special interest somewhere. It's part of the deal of using a "free" service. People who are angry that Trump may have used the same technology as everyone else since the early years of Facebook are ignorant or hypocritical.

    1. Re: What Scandal? by Anonymous Coward · · Score: 5, Informative

      A 2012 report from

      Facebook is also being seen as a source of invaluable data on voters. The re-election team, Obama for America, will be inviting its supporters to log on to the campaign website via Facebook, thus allowing the campaign to access their personal data and add it to the central data store – the largest, most detailed and potentially most powerful in the history of political campaigns. If 2008 was all about social media, 2012 is destined to become the "data election".

    2. Re:What Scandal? by MDMurphy · · Score: 3, Insightful

      While most people like to blame FB for "selling" your data, much of it is given away by your friends. As this Cow Clicker guy points out, when someone signed up for the game they agreed to give certain information. FB didn't call up and sell it to him, the people playing the game gave it to him. Other apps ask for, and get, your list of friends, email address and other info.

      I have more a problem with LinkedIn. They'd casually ask you for your email account and password in order to extract all your contact names and email addresses ( and spam them with generic "please join my network" email ) While LinkedIn has the info and does who knows what with it, they just politely asked your friends for it and they gladly gave it to them. Lots of phone apps will also ask for access to your contact list.

      So who's really the worst at keeping your info private? Your idiot friends.

    3. Re: What Scandal? by Anonymous Coward · · Score: 1

      Here is the link: https://www.investors.com/politics/editorials/facebook-data-scandal-trump-election-obama-2012/

    4. Re:What Scandal? by CWCheese · · Score: 1

      The simple response to LinkedIn when the question pops up is NO. I never allow any app or site just blithely take my contacts list. Of course, I grew up in the day when door-to-door vacuum cleaner and encyclopedia salesmen would come to sell you their stuff and then ask you to rat out a dozen of your friends before they leave. Now the salesmen simply suck it down from FB. Thus I never ever had an FB account.

      --
      Have a Day!
    5. Re:What Scandal? by Anonymous Coward · · Score: 0

      It amazes me that anyone could be dumb enough to give away their email password. You know - it can be used for more than "getting your contact list". It can also be used to read all your mail, and send mail on your behalf. Perhaps LinkedIn doesn't do that today, but don't be surprised the day someone do just that.

      It used to be that software vendors didn't install rootkits on your computer - but that has happened too, so . . .

    6. Re:What Scandal? by CWCheese · · Score: 1

      Oh no, you misunderstand me. I meant that when LinkedIn or any other site offers to look at my Gmail, Yahoo, AOL, xyzeieio contacts list to find my friends I say no and just move on without clicking the link. Sometimes I reload the page to see if the dialog pops up again. But I just don't let sites use my contact lists.

      --
      Have a Day!
    7. Re:What Scandal? by Anonymous Coward · · Score: 0

      For actual analysis, try reading here: http://www.politifact.com/truth-o-meter/statements/2018/mar/22/meghan-mccain/comparing-facebook-data-use-obama-cambridge-analyt/

  5. If only they were a bit more mad.... by Anonymous Coward · · Score: 0

    ....you might be a billionaire today, rather than reminiscing over some virtual cow patties. Angry cows...

  6. What doesn't collect data? by Anonymous Coward · · Score: 2

    I don't know how this is suddenly making the news when it has been well known for years. It is nice to see people starting to car about privacy again, but anything Facebook related should be assumed to be collecting and profiting off your data until proven otherwise.

    1. Re:What doesn't collect data? by Archangel+Michael · · Score: 1, Insightful

      You do know why. Because Trump is evil and therefore anything he does is bad. Even if other people did it worse before, he is bad. Therefore He Must Be STOPPED!!!!

      --
      Agent K: A *person* is smart. People are dumb, stupid, panicky animals, and you know it.
    2. Re:What doesn't collect data? by haruchai · · Score: 3, Insightful

      You do know why. Because Trump is evil and therefore anything he does is bad. Even if other people did it worse before, he is bad. Therefore He Must Be STOPPED!!!!

      Yes he must. Not because he's evil but because he's vain, easily manipulated and, in the words of the former CEO of the world's largest oil company, a fucking moron

      --
      Pain is merely failure leaving the body
    3. Re:What doesn't collect data? by Anonymous Coward · · Score: 0

      And yet, the country still preferred him rather than Hillary. Tells you something, doesn't it?

    4. Re:What doesn't collect data? by I'm+New+Around+Here · · Score: 1, Insightful

      The same could have been said of Obama. Being vain or a moron are not disqualifications from being president.

      --
      If you think I voted for Trump because of this post, you're wrong. I voted for Dr. Jill Stein of the Green Party. Again.
    5. Re:What doesn't collect data? by mrsquid0 · · Score: 1

      Actually, the country preferred Hillary over Trump by a significant amount. It was the weighted electoral system that gave Trump his pyrrhic victory.

      --
      Just because you are paranoid does not mean that no-one is out to get you.
    6. Re: What doesn't collect data? by Anonymous Coward · · Score: 0

      Hillary was fully aware of the fact that electoral votes not popular votes are how the POTUS is elected. She had craploads of superdelegates and the blessing of her party, and still lost. Really, stop blaming Trump, the Russians and Bernie. Blame the DNC and Hillary.

    7. Re:What doesn't collect data? by haruchai · · Score: 1

      The same could have been said of Obama. Being vain or a moron are not disqualifications from being president.

      Wrong. You can say what you like about anyone, doesn't make it true. In Trump's case, his egocentricity & stupidity are demonstrable.
      And especially obvious to those close to him.
      In 2012, Grover Norquist said "we just need a Republican with enough working digits to hold a pen to become POTUS".

      With Trump, the GOP got their ultimate tool.

      --
      Pain is merely failure leaving the body
    8. Re:What doesn't collect data? by Anonymous Coward · · Score: 0

      Are... are you suggesting that Obama was NOT vain? It's hard to say if he's a moron or not, since he's never accomplished anything outside of politics, even his academic records are hidden, but he's certainly one of the most arrogant Presidents the US has had.

      Remember when he declared he was smarter than anyone else in the government? That he he knew policy better than his experts, could write better speeches than professional speechwriters, and understood politics better than his political advisers?

      At least Trump was smart enough to admit he couldn't run the entire Federal Government by himself, and said he would hire experts to do the work.

    9. Re:What doesn't collect data? by Anonymous Coward · · Score: 0

      Are... are you suggesting that Obama was NOT vain? It's hard to say if he's a moron or not, since he's never accomplished anything outside of politics, even his academic records are hidden, but he's certainly one of the most arrogant Presidents the US has had.

      Remember when he declared he was smarter than anyone else in the government? That he he knew policy better than his experts, could write better speeches than professional speechwriters, and understood politics better than his political advisers?

      At least Trump was smart enough to admit he couldn't run the entire Federal Government by himself, and said he would hire experts to do the work.

      I bet you can't actually show Obama saying any of that, only that someone else *said* that he said it.

    10. Re: What doesn't collect data? by Anonymous Coward · · Score: 0

      Same can be said about Trump and âoeshithole countryâ.

      But yes what? MSM doesnâ(TM)t need proof any more, just some guy who was there that said someone said something.

    11. Re: What doesn't collect data? by Anonymous Coward · · Score: 0

      But "guess what"...

      I will never get used to touchscreen typing.

    12. Re: What doesn't collect data? by Anonymous Coward · · Score: 0

      Same can be said about Trump and âoeshithole countryâ.

      But yes what? MSM doesnâ(TM)t need proof any more, just some guy who was there that said someone said something.

      It's completely in character for the orange-tinted asshat and it's amusing that some of the GOP asslickers who were present and trying to defend him are claiming he he said "shithouse" but not "shithole"

      https://www.vox.com/2018/1/16/...

      "Anonymous Republican sources have pushed the story that Trump in fact used the phrase “shithouse countries.” According to the Washington Post’s Josh Dawsey, Robert Costa, and Ashley Parker, Sens. Tom Cotton (R-AR) and David Perdue (R-GA) told the White House that’s what they remember Trump saying in the meeting.

      Trump has apparently decided that the controversy is hurting him politically, so his allies are using this minor discrepancy to justify public denials that he said “shithole.” This, the Post reporters wrote, was Cotton and Perdue’s private rationale for their Friday statement claiming they “do not recall the President saying those [shithole] comments specifically.”

      Now, some anonymous Republican spinners are going even further, telling reporters that the term “shithouse” gets Trump off the hook from accusations of racism. Michael Isikoff said he was told that Trump was “thinking about real estate,” and Scott Wong said he was told Trump simply meant countries without plumbing.

      The bigger picture: We have reports of Trump using either vulgar or racist language to disparage immigration from predominantly black or Muslim countries in the Oval Office — in two separate instances. (The New York Times reported a similar incident in December.)

      Regardless of whether the disparaging term used in one of these cases was “shithole” or “shithouse,” our president’s private opinions are clear: He views certain countries as inferior and their people as unfit for immigration to the United States.

      “I want them to come in from everywhere,” Trump told the White House press pool Tuesday afternoon. In private, though, he appears to say very different things.

      This wasn’t the first report of Trump offensively disparaging immigrants’ home countries in private
      Last week’s report of Trump’s vulgar language against certain immigrants’ home countries in the Oval Office shouldn’t have come as a surprise — because the New York Times published a remarkably similar report weeks earlier, in a separate meeting months before.

      The Times’s Michael Shear and Julie Hirschfeld Davis wrote that Trump “stormed into the Oval Office one day in June, plainly enraged,” reading off a document his hardline adviser Stephen Miller had given him. What he reportedly said made him look like a crude, racist caricature:

      The document listed how many immigrants had received visas to enter the United States in 2017. More than 2,500 were from Afghanistan, a terrorist haven, the president complained.

      Haiti had sent 15,000 people. They “all have AIDS,” he grumbled, according to one person who attended the meeting and another person who was briefed about it by a different person who was there.

      Forty thousand had come from Nigeria, Mr. Trump added. Once they had seen the United States, they would never “go back to their huts” in Africa, recalled the two officials, who asked for anonymity to discuss a sensitive conversation in the Oval Office.

      Here, again, the White House press team didn’t deny the thrust of what Trump said, but they did deny whether he used the words “AIDS” or “huts.” However, the Times reporters wrote that two sources in the meeting recalled Trump using those words, and found them “so noteworthy t

    13. Re: What doesn't collect data? by Anonymous Coward · · Score: 0

      You missed your meds today huh?

    14. Re: What doesn't collect data? by Anonymous Coward · · Score: 0

      No

  7. Need more details by bobstreo · · Score: 1

    I've never used bookFace on this browser, or on any phone or tablet...

    and of course never clicked on bovines...

  8. Why did the author admit to all this so readily? by mysidia · · Score: 1

    Facebook's just going to add him to a list of developers to audit, probably! Look: He even said he still has the info!

    I might still be able to; all the data is still there, stored on my private server, where Cow Clicker is still running

    I'm pretty sure that retaining Facebook user details is specifically against the developer terms, and it was even back when Farmville was still all the rage.....

  9. So what if you get data about me? by known_coward_69 · · Score: 1, Interesting

    I own property in NYC and it's already public record where I live and what I own. So you combine with other data and find out that I surf porn. Big deal, pornhub is huge because millions of other people do so as well.

    WTF are you going to do with the data? sell it? Everyone else already has this too.

    1. Re:So what if you get data about me? by Anonymous Coward · · Score: 1

      I own property in NYC and it's already public record where I live and what I own. So you combine with other data and find out that I surf porn. Big deal, pornhub is huge because millions of other people do so as well.

      WTF are you going to do with the data? sell it? Everyone else already has this too.

      As your name states, you are but a low, meek, known coward, with nothing to lose, which does not represent the common person.
      Additionally it's unlikely you have ever been the target of true hate or prejudice, otherwise you would understand how powerful that data is in the hands of a powerful advisary.

    2. Re:So what if you get data about me? by Headw1nd · · Score: 1

      If you had a "powerful enemy" they wouldn't need to aggregate metadata to find out about you. They would do so directly.

    3. Re:So what if you get data about me? by h4ck7h3p14n37 · · Score: 1

      Additionally it's unlikely you have ever been the target of true hate or prejudice, otherwise you would understand how powerful that data is in the hands of a powerful advisary.

      Where I live you don't have to declare a political party for the regular elections, but you do for the primaries. There have been rumors that some of the Aldermen and city workers are discriminating against people based on what ballot they take. Work for the city and take a Republican ballot? You just might be passed over for that next promotion. If you're a homeowner the Alderman might just ignore your complaints. We even have one that has his staff monitor people's social media postings that are critical of his projects and then file false complaints against them.

    4. Re:So what if you get data about me? by dpidcoe · · Score: 2

      Having the data easily accessible lowers the bar for what constitutes a "powerful enemy". Now if you want to ruin your life there's no need to piss off some state actor with government databases at their fingertips, you only have to piss off some random guy on a message board posting from his moms basement with access to google.

      For example, with enough real details about you and sufficient motivation, I could create a fake social media presence in your name, get it all "verified", post a bunch of hate-filled rants about minorities, then report the fake you to your employer. Start a big social media shitstorm leveraging some groups of well meaning idiots, and suddenly you've lost your job (check out what happened to people who had photos of themselves at antifa/neonazi rallies and were targeted by the other side). Maybe you can get it sorted out in the end (or maybe not), but it's still a massive headache for you to clear up if it sticks even for just a few hours.

  10. You found a lonely lost cow by McGruber · · Score: 1

    Click to continue

  11. Re:Why did the author admit to all this so readily by Anonymous Coward · · Score: 0

    Why admit all that? The warm fuzzy feeling one gets from telling people they were one of the "insiders", a sort of counterfeit absolution.
    It's a formulaic style that seems to be gaining popularity and appears along with most movements.
    People come out of the woodwork and write to whatever rag will publish them, coming clean to all the proles about how they used to do some questionable action and how easily they got away with it.

  12. I don't get the outrage? by schweini · · Score: 1

    Anyone who has every looked at Facebook's Graph API knows that when you build a "Facebook App", you have the option to ask for more detailed access to the user's information (basic public profile information which you could screen-scrape anyhow is included).
    The user gets a quite clear pop-up where he has to allow access to this information.
    Once in a while, Facebook even tells the user "Hey! You might wanna go through your enabled Apps and disable some!"

    So I don't understand the outrage? User permits developer access to his data. Developer is bound by Facebook API's ToS (which are often ignored, I guess).

  13. It's not your data, it's Facebook's data! by h4ck7h3p14n37 · · Score: 1, Informative

    The thing is it's not "your" data if you live in the United States. Europe has strict data protection laws, the data belongs to the person who provides it and you may only use it for purposes they have already agreed to. This actually causes problem with things like medical research where it's actually illegal to use new techniques against old samples because people did not agree to the new use. You have to go back to them and get consent which can be inconvenient, costly or even impossible if they are deceased.

    In the United States data belongs to the person who collects it. If you give an app permission to trawl your contacts, that data now belongs to them to do whatever they want. In this case the app developer did have an agreement with Facebook, but Facebook has absolutely no ability to prevent the developer from doing whatever he wants with the data he collected. They can sue him for breaching the agreement, but there's no way they can get the data back. It's already out there. There's no way to prove someone else doesn't have copy; that's the whole nature of electronic data. Of course none of this is ever mentioned when the story is covered by the media.

    I really don't understand why this story is getting so much attention. From the coverage I've seen it seems to be because this can be linked to a firm that the Trump campaign used. Facebook is already well known to not be trustworthy with your private data. You really shouldn't put anything you don't want made publicly available on a social media website, even if you think you've restricted who can view it. Haven't most Facebook users had the site auto-post something without their consent? I know I once used an app that wanted to use photos from my Facebook albums. I uploaded a picture to my mobile album so I could import it in the app and Facebook posted the damn thing to all of my friends. But it's kind of silly to single out Facebook when there are thousands of smartphone applications, retailers and other companies that are doing the same thing. Some of the applications available for download are nothing more than trojan horses used to gain access to your information.

  14. No it did not by Anonymous Coward · · Score: 0

    I do not have a Facebook account and I am reasonably sure that the "app" did not run on my phone.

    What, do you think I am 12?

  15. Trump at it again by Anonymous Coward · · Score: 0

    Looks like Trump must have paid someone to write this game for him to get MORE data on people!