Security firm Imperva found a bug in May that allowed websites to read Facebook users and their friends’ private information. The troubling vulnerability let a site access users’ likes and interests through a manipulated Facebook Graph query. Thankfully, the bug has now been fixed Imperva’s researcher Ron Masas discovered in May that Facebook was exposed to cross-site request forgery (CSRF).
Read full news article on The Next Web