Facebook has lodged a lawsuit against two programmers who improperly used a Facebook feature that allowed them to take control of victims web browsers and gain access to private information and private friends lists effectively bypassing the security settings in Facebook.
Victims were lured with quizzes that included:
- What does your eye colour say about you?
- Do you have royal blood?
- You are Yin, who is your Yang?
- What kind of dog are you according to your zodiac sign?
When users connected their Facebook accounts to the app they were then prompted to install malicious browser extensions masquerading as legitimate applications that allowed the criminals to pose as the compromised users online.
The campaign compromised over 60,000 users and Facebook is claiming monetary damages of US$75,000.
This is a good reason why I do not use any quizzes or similar games apart from playing words with friends with the wife and close friends and yes, Candy Crush Saga while I wait for appointments or on hold with call centers.
If you want to check which apps have connected to your facebook account on your computer simply go to https://www.facebook.com/settings?tab=applications and on your mobile device look under Settings and Privacy -> Apps and Websites. In this section you can remove links to apps you no longer want or need.
Screenshots have been included in this post to help you along the way if needed.