In new gaffe, Facebook improperly collects email contacts for 1.5 million

by
Dan Goodin
from Ars Technica - All content on (#4DEYG)
GettyImages-541789842-800x534.jpg

Enlarge (credit: Getty Images)

Facebook's privacy gaffes keep coming. On Wednesday, the social media company said it collected the stored email address lists of as many as 1.5 million users without permission. On Thursday, the company said the number of Instagram users affected by a previously reported password storage error was in the "millions," not the "tens of thousands" as previously estimated.

Facebook said the email contact collection was the result of a highly flawed verification technique that instructed some users to supply the password for the email address associated with their account if they wanted to continue using Facebook. Security experts almost unanimously criticized the practice, and Facebook dropped it as soon as it was reported.

In a statement issued to reporters, Facebook wrote:

Read 7 remaining paragraphs | Comments

index?i=6IwKESRiZPs:hYpKru5Rjuw:V_sGLiPB index?i=6IwKESRiZPs:hYpKru5Rjuw:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments