Home / Early Warning / Cybersecurity Highlights / Facebook fixes a bug in the photo access API

Facebook fixes a bug in the photo access API

12/14/2018

Facebook's internal team discovered an error in the API for accessing photos that may have affected people who used Facebook login and granted permission to third-party applications to access their photos.

The problem has now been fixed, but some third-party applications may have had access to photos in the time interval between 13 and 25 September 2018. The company estimates that the bug could have affected 6.8 million users and up to 1,500 applications deployed by 876 developers.

Facebook is already working on tools to identify affected users, as well as ensuring that it will notify affected users through an alert that will direct them to the Help Center, where they will be able to see if they have used an affected application.