A security flaw in Facebook reveals your private photos, reports Launch. Like these formerly private photos of company founder, amateur butcher and generally creepy human being Mark Zuckerberg, showing off his dinner both alive and dead.
We weren’t able to duplicate the hack, but as described, the exploit that allowed the hacker to grab Zuck’s pictures was ridiculously easy. Report a photo to Facebook as nudity or pornography, and it then gives you access to other private photos in a person’s stream, to helpfully flag those as well. Facebook has already fixed things, but not before a cache of Zuckerberg’s intimate moments with various animals was exposed.
Mmmmmmm. Chicken fingers.
Update: A Facebook spokesperson reached out to Gizmodo to let us know the flaw has now been fixed:
Earlier today, we discovered a bug in one of our reporting flows that allows people to report multiple instances of inappropriate content simultaneously. The bug allowed anyone to view a limited number of another user’s most recently uploaded photos irrespective of the privacy settings for these photos. This was the result of one of our recent code pushes and was live for a limited period of time. Upon discovering the bug, we immediately disabled the system, and will only return functionality once we can confirm the bug has been fixed.
No snooping for you! But there’s still a fine cache of Zuck photos at the link above. [Launch]