Markets

Facebook user records found exposed on Amazon cloud

Facebook user records found exposed on Amazon cloud

However, UpGuard claims the Mexican media company ignored both its emails, and Amazon's own notifications, about the open database. Security researchers discovered hundreds of millions of records on publicly-accessible Amazon cloud servers - including names, passwords, comments, likes, and all the other stuff we should all just assume has already leaked at some point. Facebook was apparently only made aware of the issue yesterday, when contacted by Bloomberg, and the databases were down by this morning.

In the other incident, backup data from a Facebook-integrated app called "At the Pool", and contains, among other things, passwords for 22,000 users that were stored in plain text.

The social network only learned of the exposed databases on Tuesday, and the company is still investigating to determine if user data was truly leaked and to what extent, a Facebook spokesperson told PCMag.

Facebook said the data had now been removed from the servers.

Detailed information about more than 540 million Facebook users was left publicly viewable for months, a security firm has found. 'Not enough care is being put into the security side of big data'.

Cultura Colectiva did not immediately respond to a request for comment. But the fact that there was so much of it, and that it seems to have been fairly easy to find, makes us wonder how much more Facebook user data there is floating in the cloud beyond Facebook's reach. Once the data is out of Facebook's hands, the developers can do whatever they want with it.

As UpGuard points out, despite the fact that Facebook has promised a renewed sense of urgency regarding its user's data, especially following the catastrophic Cambridge Analytica leak previous year, there is only so much that the company can control at this point. That one instance has led to government probes around the world, and threats of further regulation for the company.

Ethiopian Airlines crash report due Monday: foreign ministry
The pilot of the Ethiopian Airlines flight experienced a similar problem after the MCAS system engaged, according to news reports. Candles were lit in tribute to Ethiopian Airlines plane crash victims at the United Nations Environment Assembly, in Nairobi.

As a result, they started an audit of thousands of apps and suspended hundreds of them previous year to ensure information was not stored unsecured in public databases.

"For Cultura Colectiva, data on responses to each post allows them to tune an algorithm for predicting which future content will generate the most traffic". UpGuard also had trouble working to get the database closed.

Such was not the case with the Cultura Colectiva data.

Both data sets were found stored in an unsecured Amazon S3 bucket and could be accessed by virtually anyone.

"This is the price paid for access to a free service but you should acknowledge that this is indeed the price you pay". Sometimes, that information is created to be public-facing, as in the case of a cache of photos or other images stored for use on a corporate website.

Cultura Colectiva spokesman Daniel Peralta said in a statement that all the data provided to the company by Facebook was gathered from the fan pages the company manages as a publisher, which is "public, not sensitive, and available to all users who have access to Facebook". But it doesn't include Facebook passwords, and it doesn't offer any path directly into Facebook accounts. "With all of this in the news, and all of this continuing to come out, if you're still opening AWS buckets [to the public], you're not paying attention". An Amazon Web Services spokesman declined to comment.