Facebook crawler collects more than 170 million data sets
For users who elect to make their Facebook profiles public (under "Facebook privacy settings/Search/Public Search"), Facebook creates a preview version of their profile that's accessible to anyone. The social networking site then provides a directory of these users at facebook.com/directory. It's freely accessible to anyone, including search engines like Google, which make the publicly accessible data searchable.
Hacker Ron Bowes has written a web crawler which he used to systematically graze through this data. Bowes claims to have collected more than 170 million sets of data containing the names and URLs of public profiles. The files do not contain any further personal data such as friend lists, but the links in the profiles can easily be used to send out another crawler to collect this information. Bowes has formatted the list and, together with the crawler itself, made it available as a 2.8 GB torrent.
Although initially the sheer size of the data is impressive, it does not actually illustrate a failure by the social networking site. This is in contrast to a similar case involving SchülerVZ, from which, it was announced in October 2009, a million sets of data had been siphoned off. Unlike Facebook, SchülerVZ does not have public profiles, and that attack originated from within the network. Every Facebook user should, however, be aware that Facebook makes their public profile accessible to anyone, unless they take steps to prevent it. Facebook's privacy policy is available from its web site.
See also:
- Facebook worms are spreading freely, a report from The H.
- Facebook introduces security measures, a report from The H.
- Facebook, the new phishing target, a report from The H.
(crve)
![Kernel Log: Coming in 3.10 (Part 3) [--] Infrastructure](/imgs/43/1/0/4/2/6/7/2/comingin310_4_kicker-4977194bfb0de0d7.png)
![Kernel Log: Coming in 3.10 (Part 3) [--] Infrastructure](/imgs/43/1/0/4/2/3/2/3/comingin310_3_kicker-151cd7b9e9660f05.png)
