Facebook Bug Could Give Spammers Names, Photos

angry tapir writes with this excerpt from an IDG report: "Facebook is scrambling to fix a bug in its website that could be misused by spammers to harvest user names and photographs. It turns out that if someone enters the e-mail address of a Facebook user along with the wrong password, Facebook returns a special 'Please re-enter your password' page, which includes the Facebook photo and full name of the person associated with the address. A spammer with an e-mail list could write a script that enters the e-mail addresses into Facebook and then logs the real names. This could help make a phishing attack more realistic."

Not a Bug

[FrozenTousen]

It's a feature. Say you get amnesia and all you remember is your email address. Now, thanks to Facebook, you have a means of finding out your name, and what you look like!

From TFA

[wideBlueSkies]

>>Scraping Facebook for this type of information is prohibited, she added.

Oh, yes. That'll stop em'. Stern warnings always do.

Answer: some 22yo kid on a powertrip

[e065c8515d206cb0e190]

Here comes Mark.

Re:Not a Bug

[Anonymous Coward]

It's a very serious bug. Spammers aren't _supposed_ to be able to scrape that information without paying facebook for it.

Re:From TFA

[Monkeedude1212]

Strongly worded public letters deter most bots.

Re:Not a Bug

[by (1706743)]

It's a feature. Say you get amnesia and all you remember is your email address. Now, thanks to Facebook, you have a means of finding out your name, and what you look like!

Imagine how much simpler the plot for The Bourne Identity would have been.

Re:*Smack Face*

[Anonymous Coward]

Seriously? Who is freaking writing these web pages?

Probably an ex-Slashcode developer.

*does not affect deactivated accounts

[Rooked_One]

I deactivated my account log ago, and just checked - it doesn't say a word about who I am. Not sure if anyone else has tried this to actually see if it works.

Re:This flaw is no longer available

[Farmer Tim]

Slashdot: recent history for nerds, stuff that once mattered.

Re:Scrambling, my ass...

[Anonymous Coward]

The site should go down for maintenance until they fix the issue, and only then brought back online.

Good idea. I'm all for bringing it down. Think of how much more productive households, college campuses, and the workplace will be for networks not already blocking facebook access. The increase in productivity would cause a spike in the world economy and take us out of the recession :-)

Re:Return vs. Fresh Login

[AnAdventurer]

Best line EVER: A spammer isn't going to have your cookies

Re:Need an adult

[Matt Perry]

I know! He's just making money for the company hand over fist. Obviously he doesn't know anything about running a company.

</sarcasm>