recommended reading

Congress pokes Facebook

In response to reports that third-party applications on Facebook have been collecting and distributing user information, Reps. Edward Markey, D-Mass., and Joe Barton, R-Texas, want to know how many people were affected, when Facebook found out, and what the company plans to do about it.

In a letter to CEO Mark Zuckerberg, the lawmakers scolded the social media website for what appears to be a violation of consumer trust.

"Given the number of current users, the rate at which that number grows worldwide, and the age range of Facebook users, combined with the amount and the nature of information these users place in Facebook's trust, this series of breaches of consumer privacy is a cause for concern," Markey and Barton wrote.

The letter said Facebook must respond by October 27.

As co-chairmen of the House Bipartisan Privacy Caucus,Markey and Barton have teamed up before on online privacy. In early August, they sought information from 15 top websites on their consumer tracking practices.

Facebook spokesman Andrew Noyes said in an e-mail that "the suggestion that the passing of a user ID to an application... constitutes a 'breach' is curious at best." Noyes wrote that, "As our privacy policy states, when a Facebook user connects with an application, the user ID is part of the information that the application receives."

Noyes said Facebook would be cooperative with the lawmakers, adding, "We look forward to addressing any confusion that has resulted from the Wall Street Journal article" that originally reported the data sharing. The newspaper found that third-party applications, like FarmVille and Gift Creator, were taking Facebook ID numbers (UIDs) and passing them along to advertisers and Internet companies. The UIDs can then be used to obtain names and information about users, which is against Facebook's privacy policy.

In a blog post, Facebook developer Mike Vernal admitted that a number of applications did in fact violate Facebook policy but described most cases as accidental due to the "technical details of how browsers work."

Vernal added, "Press reports have exaggerated the implications of sharing a UID. Knowledge of a UID does not enable anyone to access private user information without explicit user consent." However, he said, "we are committed to ensuring that even the inadvertent passing of UIDs is prevented and all applications are in compliance with our policy."

RapLeaf Inc., a start-up dedicated to customer tracking that was singled out by the Wall Street Journal as having passed along UIDs, has put up a blog post saying that the problem on its end has been fixed.

"When we discovered that Facebook IDs were being passed to ad networks by applications that we work with, we immediately researched the cause and implemented a solution to cease the transmissions," the post says. "As of last week, no Facebook IDs are being transmitted to ad networks in conjunction with the use of any Rapleaf service."

Threatwatch Alert

Thousands of cyber attacks occur each day

See the latest threats


Close [ x ] More from Nextgov

Thank you for subscribing to newsletters from
We think these reports might interest you:

  • It’s Time for the Federal Government to Embrace Wireless and Mobility

    The United States has turned a corner on the adoption of mobile phones, tablets and other smart devices, outpacing traditional desktop and laptop sales by a wide margin. This issue brief discusses the state of wireless and mobility in federal government and outlines why now is the time to embrace these technologies in government.

  • Featured Content from RSA Conference: Dissed by NIST

    Learn more about the latest draft of the U.S. National Institute of Standards and Technology guidance document on authentication and lifecycle management.

  • A New Security Architecture for Federal Networks

    Federal government networks are under constant attack, and the number of those attacks is increasing. This issue brief discusses today's threats and a new model for the future.

  • Going Agile:Revolutionizing Federal Digital Services Delivery

    Here’s one indication that times have changed: Harriet Tubman is going to be the next face of the twenty dollar bill. Another sign of change? The way in which the federal government arrived at that decision.

  • Software-Defined Networking

    So many demands are being placed on federal information technology networks, which must handle vast amounts of data, accommodate voice and video, and cope with a multitude of highly connected devices while keeping government information secure from cyber threats. This issue brief discusses the state of SDN in the federal government and the path forward.

  • The New IP: Moving Government Agencies Toward the Network of The Future

    Federal IT managers are looking to modernize legacy network infrastructures that are taxed by growing demands from mobile devices, video, vast amounts of data, and more. This issue brief discusses the federal government network landscape, as well as market, financial force drivers for network modernization.


When you download a report, your information may be shared with the underwriters of that document.