Instagram will pay researchers to uncover abuse of users' personal data
It's part of Facebook's expanding bug bounty program
Facebook is broadening itsto reward more security sleuths. As of today, researchers at least $500 when they find Facebook data vulnerabilities in third-party apps and sites using active penetration tests, not just passive observation. They'll have to conduct the tests with the permission of the third party and honor that party's bounty and disclosure rules, but they'll have a stronger incentive to share potential data leaks than they did in the past.
This might not go as far as some would like, since the permission requirement leaves researchers in a tough spot. While this increases the chances that a third party will be aware of and fix a data flaw, it also creates problems if the app or site creator doesn't consent to testing. This doesn't stop tests, but an investigator may have to accept that neither Facebook nor the third party will pay up.
After data incidents, Instagram expands its bug bounty
Facebook is expanding its data abuse bug bounty to Instagram . The social media giant, which owns Instagram, first rolled out its data abuse bounty in the wake of the Cambridge Analytica scandal, which saw tens of millions of Facebook profiles scraped to help swing undecided voters in favor of the Trump campaign during the U.S. presidential election in 2016. The idea was that security researchers and platform users alike could report instances of third-party apps or companies that were scraping, collecting and selling Facebook data for other purposes, such as to create voter profiles or build vast marketing lists.
So long as most companies cooperate, though, this could lead to more disclosures and better controls for your data. Facebook has a strong financial motivation to pay more, too. Whatever it spends on bounty rewards it might save by avoidingfor its data security.
Facebook: the specter of abuse of dominant position in Germany
The German competition authority considers that Facebook abuses its dominant position to collect and process data from third-party services.
With 30 million active users at least once a month, and among them, 23 million connected every day, Facebook occupies a dominant position on the network market in Germany social.
The Bundeskartellamt (Federal Office for the Fight Against Cartels, equivalent in Germany of our Competition Authority) draws up this observation on the occasion of a progress report -, 6 pages - within the framework of an against the US group.
The procedure focuses on the collection and processing of data from third-party sources. That is to say as well the other services of Facebook (Instagram and WhatsApp are cited) than those who exploit its programming interfaces.
Evaluating Facebook's market share in terms of the mass of users at "over 90%" and considering that other social networks * are "hard to replace", the Bundeskartellamt perceives an abuse of this dominant position.
Said abuse is characterized by the conditions to accept to register on the social network: a "limitless" collection of "all kinds of data" generated on third-party services and then merged with the user's Facebook account.Really informed consent?
Such a practice is, according to the German authorities, neither justified in the light of the principles of data protection enshrined in European law nor appropriate with regard to national antitrust legislation. Especially since users are not aware of it, according to Andreas Mundt.
"In the state of the file, we are not convinced that the users have indeed given their consent [...] to this form of collection and treatment", summarizes the president of the Bundeskartellamt, not without suggesting a violation of the right to informational self-determination enshrined in the German constitution.
The authority also denounces a "snowball effect": by collecting and crossing more data, Facebook can improve its services, attract more users ... and thus more advertisers, complicating the arrival of new players in the market.
It is left to Mark Zuckerberg's company the opportunity to comment on these observations, to provide justifications or to propose solutions. A final decision will not be taken until summer 2018.
* Neither YouTube, nor Twitter, nor professional social networks (LinkedIn, Xing), nor instant messaging tools are put on the same, as they "serve a complementary need" from the point of view of users, according to the Bundeskartellamt .
Facebook gets about 500,000 reports of revenge porn a month, report says .
The social network is using a mix of AI tools and a dedicated team to combat revenge porn.Facebook, the world's largest social network, earlier this year launched artificial intelligence tools that can spot revenge porn, also known as nonconsensual intimate images, before being reported by users. In 2017, the company also launched a pilot program that let users submit intimate pictures to Facebook in an effort to prevent them from being shared on the social network.