Facebook Suspends Hundreds Of Apps

Did you just notice a Facebook  app you use  has disappeared?  After reviewing “thousands” of apps on its platform following a major data misuse scandal that blew up in March, Facebook has announced it has suspended around 200 apps, pending what it describes as a “thorough investigation” into whether or not their developers misused Facebook user data.

The action is part of a still ongoing audit of third party applications running on the platform announced by Facebook in the wake of the Cambridge Analytica data misuse scandal

Cambridge Analytica was a third party developer who used quiz apps to extract and pass Facebook user data to the consultancy for political ad targeting purposes.

CEO Mark Zuckerberg  announced the app audit on March 21, writing that the company would “investigate all apps that had access to large amounts of information before we changed our platform to dramatically reduce data access in 2014, and we will conduct a full audit of any app with suspicious activity”. Apps that would not agree to a “thorough audit” would also be banned, he said then.

Just under two months on and the tally is around 200 ‘suspicious’ app suspensions, though the review process is ongoing, and Facebook is not being more specific about the total number of apps it’s looked at so far (beyond saying “thousands”), so expect that figure to rise.

In the Cambridge Analytica  instance, Facebook admitted that personal information on as many as 87 million users may have been passed to the political consultancy, without most people’s knowledge or consent.

Giving an update on the app audit process in a blog post, Ime Archibong, Facebook’s VP of product partnerships, writes that the investigation is “in full swing”.

“We have large teams of internal and external experts working hard to investigate these apps as quickly as possible,” he says.

“To date thousands of apps have been investigated and around 200 have been suspended, pending a thorough investigation into whether they did in fact misuse any data... “Where we find evidence that these or other apps did misuse data, we will ban them and notify people via this website. It will show people if they or their friends installed an app that misused data before 2015, just as we did for Cambridge Analytica.”

Archibong does not confirm how much longer the audit will take, but does admit there’s a long way to go, writing that: “There is a lot more work to be done to find all the apps that may have misused people’s Facebook data – and it will take time.”

“We are investing heavily to make sure this investigation is as thorough and timely as possible,” he adds. 

Where Facebook does have concerns about an app, such as the 200 apps it has suspended pending a fuller probe, Archibong says it will conduct interviews; make requests for information (“which ask a series of detailed questions about the app and the data it has access to”); and perform audits “that may include on-site inspections”. So Facebook will not be doing on-site inspections in every suspicious app instance.

Given the likely scale of data misuse by developers on its platform there is an argument for Facebook to publish a public list of suspensions.

A Facebook spokeswoman has subsequenty been reported to say that the the company intends to provide more details about any apps it decides to ban after concluding each case-by-case investigation. Although she also said the company has not yet decided how it will share information about these apps. 

The spokeswoman declined to specify how many thousands of apps Facebook has reviewed at this stage; how long it believes the full investigation process will take; nor how large a quantity of user data it’s using as its benchmark to trigger individual app investigations. The process remains pretty shrouded and caveated, making its rigor and value hard to quantify.

Techcrunch

You Might Also Read: 

Facebook Collects Your Data Even If You Don’t Use Facebook:

Regulation Might Actually Protect Facebook:
 

 

« Turkey Using German Spy Software On Opposition Politicians & Activists
Barclays Bank Want To Stop Cybercrime »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Promon

Promon

Promon is an application security vendor providing Self-Protection abilities to Mobile apps and Desktop applications.

Brinqa

Brinqa

Brinqa is a leading provider of unified risk management and security analytics.to manage IT governance and technology risk.

Hillstone Networks

Hillstone Networks

Hillstone Networks offers a broad range of security solutions for enterprises and data center networks – whether physical, virtual, or in the cloud.

Packet Ninjas

Packet Ninjas

Packet Ninjas is a niche cyber security agency with specialized expertise in the use of digital intelligence to strengthen cyber security.

FixMeStick

FixMeStick

FixMeStick is a virus removal device, a USB key that removes malware conventional antivirus software often can’t detect.

Asseco Group

Asseco Group

Asseco Poland stands at the forefront of the multinational Asseco Group. We are a leading provider of state-of-the-art IT solutions in Central and Eastern Europe.

TunnelBear

TunnelBear

TunnelBear is a Virtual Private Network services provider offering secure encrypted access to the internet.

Fingerprint Cards

Fingerprint Cards

Fingerprint Cards develops and produces biometric components and technologies that verify a person’s identity through the analysis and matching of an individual’s unique fingerprint.

NuCrypt

NuCrypt

NuCrypt is developing technology that is applicable to ultrahigh security data encryption as well as key distribution.

Acceptto

Acceptto

Acceptto offers the first unified and continuous authentication identity access platform with No-Password.

Soteria

Soteria

Soteria is a global leader in the development, integration and implementation of advanced cyber security, intelligence and IT solutions, delivering complete end-to-end solutions.

PSafe

PSafe

PSafe is a leading provider of mobile privacy, security, and performance apps. We deliver innovative products that protect your freedom to safely connect, share, play, express and explore online.

Sikich

Sikich

Sikich LLP is a leading professional services firm specializing in accounting, advisory, technology and managed services.

Suffescom Solutions

Suffescom Solutions

Suffescom Solutions is a leading blockchain development company, assisting businesses in harnessing the true potential of blockchain technology.

Allot

Allot

Allot are a global provider of leading innovative network intelligence and security solutions for Service Providers and Enterprises worldwide.

ZeroThreat

ZeroThreat

ZeroThreat, a vulnerability scanning and automated pentesting tool, accelerates vulnerability detection 5x faster with unprecedented accuracy and efficiency in real-time.