Facebook has admitted that, between May 18 and 27, posts by some 14 million users were automatically set to be shared with the public.
“Every time you share something on Facebook, we show you an audience selector so you can decide who gets to see the post. This is based on the people you shared with last time you posted.” -Erin Egan, Chief Privacy Officer, Facebook
Book a demo today to see GlobalDots is action.
Optimize cloud costs, control spend, and automate for deeper insights and efficiency.
But due to a bug that occurred while building a new Facebook features, 14 million users the audience selector was automatically set on “public” during that time.
Users could have changed the setting at any time, but most users don’t check it and rely on it to be how they left it. Egan did not say how knew that the problem affected only those and not other users.
In January 2024, a misconfigured API exposed 650,000 private messages. These included passwords and internal communications. No exploit chain. No zero-day. Just a public-facing endpoint with no authentication. This wasn’t an isolated incident. From T-Mobile and Twitter (now X) to Kronos Research and the US Treasury, attackers have consistently used APIs as entry points. They […]
APIs are now the top attack vector in enterprise apps. In 2024 alone, breaches tied to APIs cost an average of $4.88 million, and that number is rising fast. Attackers exploit gaps in API authentication, input validation, and outdated endpoints to compromise systems. Legacy controls no longer suffice, and the OWASP API Top 10 outlines […]
APIs are the backbone of today’s interconnected software. They power everything from mobile apps and SaaS platforms to internal microservices and partner integrations. But their rapid growth has left many security teams flat-footed. In 2025, many attackers prefer to exploit API misconfigurations hiding in plain sight. What used to be fringe cases (token leakage, zombie […]
APIs are no longer an edge case. In 2025, they’re a core requirement for maintaining trust, compliance, and operational continuity. As organizations build more API-driven systems—from customer apps to internal microservices—the exposure risk compounds. And quickly, too. Even mature security teams are finding that traditional tools can’t keep pace with the volume, velocity, and nuance […]
Schedule a call with our experts. Discover new technology and get recommendations to improve your performance.
GlobalDots' industry expertise proactively addressed structural inefficiencies that would have otherwise hindered our success. Their laser focus is why I would recommend them as a partner to other companies
Marco Kaiser
CTO
Legal Services
GlobalDots has helped us to scale up our innovative capabilities, and in significantly improving our service provided to our clients
Antonio Ostuni
CIO
IT Services
It's common for 3rd parties to work with a limited number of vendors - GlobalDots and its multi-vendor approach is different. Thanks to GlobalDots vendors umbrella, the hybrid-cloud migration was exceedingly smooth
