Visit speed website Wadd's PR and Media blog home
May 25th, 2010 by Wadds

Evil web app displays personal mobile numbers from Facebook

After writing about Facebook personal privacy issues recently I met a developer at a Thinking Digital dinner tonight that has created a web application that exploits user data from Facebook to dramatic effect.

Tom Scott (@tomscott) has built his Evil app using the Graph API to search public groups about lost phones. The web app randomly displays the private phone numbers of unsuspecting Facebook users.

Scott says that his intention is highlight personal privacy issues on Facebook and has truncated the displayed numbers to make his point.

Evil follows a long line of projects by Scott who describes himself as a geek comedian. Check out and enjoy Breaking the News Salmon in a Dishwasher, The Google Street View Race and other projects on his site.

Reblog this post [with Zemanta]
Posted in Social media
Tags: , , , ,
4 Comments »
Share this:Stumble It!Digg This!Add to del.icio.usBookmark to TechnoratiShare on FacebookSend to Reddit
May 14th, 2010 by Wadds

Facebook privacy: software tools enable personal content to be interrogated

Facebook, Inc.

Image via Wikipedia

The chances are that I’m not your friend on Facebook. But that doesn’t matter. I can almost certainly access personal content that you’ve posted on the network.

With a very simple web script I could mine the comments that you are making to your Friends on your Facebook page – unless you’ve throttled back your security settings to the maximum level of protection.

Speed’s Dan Howe tracks social media developer sites and forums and has spotted a potential security hole in the Facebook applications designers Graph API. An API is a fancy name for how one software application such as Facebook talks to another. TechCrunch also spotted the conversations about the hole and covered the story this afternoon.

The Facebook Graph API can be used to find out what people are posting behind the network’s closed walls.

Here’s an application call for everyone that is making posts about a job interview. If you click on the link you’ll see the code generated by the API-call. Look closer and you’ll see text strings of each conversation that mention the string “job interview”.

Can you see the privacy issues we can?

Of course we could make the presentation prettier by designing an application to manipulate the search data and present it in a more attractive way, but that’s the not the point. This is a very trivial example that demonstrates how easy it is for developer to integrate user data within what we assume to be a closed social network.

I caught up with Dan this afternoon. He’s been working with the API and reckons that unless you have locked down your privacy settings to a friends only setting it is possible for anyone with a web browser to access content that you post on your personal Facebook page.

Facebook has published a list of the type of search queries supported in the documentation for the Graph API. These include individual users (you and me), pages, events, groups and status messages. It’s a marketing wet dream.

I don’t know about you but it makes me very uncomfortable and I’ve locked down my security settings as a result. Privacy and transparency are the two issues that could halt the phenomenal growth of social media.

Facebook must make users aware of the potential of the tools that it’s making available to harness data and content posted within its network if it’s to avoid a backlash.

Reblog this post [with Zemanta]
Posted in Interesting, Social media
Tags: , , , , ,
6 Comments »
Share this:Stumble It!Digg This!Add to del.icio.usBookmark to TechnoratiShare on FacebookSend to Reddit
February 25th, 2010 by Wadds

PR Week FourSquare podcast: addressing personal privacy issues, brand promotion and protection

33 Digital’s Drew Benvie and I participated in this week’s PR Week podcast. During the conversation we discussed how brands can promote their business on FourSquare, protect their reputation and privacy issues.

The podcast resulted from personal privacy concerns that have had FourSquare on the offensive in the last week following the launch of PleaseRobMe.com a mash-up that tracks the movement of individuals on FourSquare and overlays images and Google Maps.

Issues of personal privacy have arisen with almost every new generation of personal technology: voicemail advertises that you aren’t at home; away-from-email auto-messages advertise that you’re on holiday. If a criminal wants to rob you there are very easy ways of tracking down whether or you’re at home.

FourSquare is currently a niche social network (300 brands and 300,000 users worldwide). It’s the first generation of a platform that combines a mechanism for brand promotion with physical location and social networking. Whether it succeeds or fails alternatives will almost certain arise.

Here are the five the promotion and reputation opportunities that we spotlighted during the podcast for brands on FourSquare:

  • Presence – if you have a physical presence (retail premise, office location etc) share it with FourSquare to ensure that you are correctly represented on the network
  • Reputation – Monitor your locations on FourSquare for tips left by visitors (good and bad reviews) and your Mayor
  • Engagement – If you’re a retail operator that uses price promotion or loyalty schemes as a means of marketing consider extending your offers to FourSquare
  • Promotion – If one your brand values is innovation consider the PR benefits of being one of the first brands to use FourSquare as a marketing platform for bespoke campaign
  • Measurement – track usage to determine return on investment and determine the value of engagement and promotion
Reblog this post [with Zemanta]
Posted in Media, Social media
Tags: , ,
No Comments »
Share this:Stumble It!Digg This!Add to del.icio.usBookmark to TechnoratiShare on FacebookSend to Reddit