Sometimes search engines provide access to data which, theoretically, are protected. This is what happened recently with more than one million accounts Facebook . A glitch that social network has made it possible. Just do a Google search for links between the results 1.32 million Facebook accounts , as explained a message posted on the website Hacker News last Friday. In some cases, it was enough to click on one of these links to get full access to the social network account, no password needed. In addition, all links left exposed email addresses of those users Facebook .
The only advantage is that you could only click once on each link, then was unusable. The origin of the problem is a bunch of Facebook that allows social network members quickly return to their accounts . The company has temporarily disabled the system, to ensure that the accounts publicly visible. Also the computer is checking the accounts of anyone who has recently entered through that shortcut. Most affected users are in Russia and China .
An engineer security of Facebook , called Matt Jones , posted a comment on this incident in Hacker News. The engineer noted that those messages with links were sent directly to the inbox of e-mail for each user to help them enter more easily into their accounts, but who have never published nor made accessible to Internet search engines. The idea is that the user can enter his account of Facebook by clicking a link received by email , rather than having to go to the social networking site and enter the e-mail or phone number and password.
Jones acknowledged that for a search engine can access those links, you need the content of the messages out of e-mail published in any Internet site . Therefore, the hypothesis being considered is that these links come from sites which collects the messages thrown in the trash or message archiving service with a poor safety protection. Meanwhile, a Facebook spokesman Frederic Wolens, recently stated that the New York Times can not explain why someone would post these links. At the end of the day, these links give a stranger access to Facebook pages, in addition to exposing the email addresses. Also Wolens is blaming the users saying that some may have posted these links on the web, allowing anyone could find them.
TrendMicro security experts consider these shortcuts dangerous web address , because they end up circulating on the Internet. Once in cyberspace, are available to hackers and search engines.