On a big site like Facebook (read more posts about Facebook), there will always be some kind of exploit available, just waiting to be found – sometimes already found by somebody. Once such an exploithas been fixed by Facebook, it’s just a matter of time before another one appears. It happens for everybody and I think it’s safe to say that all IT systems run the risk of exploits one way or another – just look at Microsoft WIndows XP, for one…
Anyway, this recent Facebook exploit was related to the chat feature available at the site. Using the privacy feature to preview your profile, as it would be seen by somebody else, you would gain access to their (the “somebody else” person) chat, and apparently also see pending friend requests.
The exploit has already been fixed by Facebook, who acted rather quickly by first disabling the chat for everybody and then re-enabled it once it was fixed.
In the video below, you can see the exploit in action. I would say this is rather embarassing for Facebook. As mentioned, security issues do happen with software, but usually you would have to do something more than just use the software as intended (like in this case), to trigger it.
While on the subject of Facebook, don’t forget that TechPatio now has a Facebook page, and I would love for you to “like” it – it’s another way of staying updated with my posts, instead of a RSS feed.