[ Dec 11, 2018 ]
Google today revealed that Google+ has suffered another massive data breach, forcing the tech giant to shut down its struggling social network four months earlier than its actual scheduled date, i.e., in April 2019 instead of August 2019.
Google said it discovered another critical security vulnerability in one of Google+’s People APIs that could have allowed developers to steal private information on 52.5 million users, including their name, email address, occupation, and age.
The vulnerable API in question is called “People: get” that has been designed to let developers request basic information associated with a user profile.
However, software update in November introduced the bug in the Google+ People API that allowed apps to view users’ information even if a user profile was set to not-public.
However, following yet another security incident, Google said the company is going to shut down its social media network in April 2019 instead of August.
Cyber Security Tips:
- The company said it found no evidence that the vulnerability was exploited or its users’ data was misused by any third-party app developers.
- Google also assured its users that no passwords, financial data, national identification numbers or any other sensitive data were left exposed by this API bug.