What sort of absolute lunatic designs a system where administration is done through your personal account? Rife for abuse from everyone involved.
Peak Silicon Valley.
Facebook last year introduced a bug in its content moderation software that exposed the identities of workers who police content on the social network to those being policed, raising the possibility of retribution. "Last year, we learned that the names of certain people who work for Facebook to enforce our policies could have …
It's unbelievable. Another report said that the bloke affected was REQUIRED to use his personal account. Why FFS? Never mind working whether you work for Stalkerbook or anyone else, if work requires you to use FB then you have a work FB account as well as a personal one. You know, a bit like e-mail and phones?
"Facebook's technical fix, according to the company spokesperson, involves the creation of administrative accounts not associated with personal Facebook accounts, "
Yep, it's amazing. Even AOL worked this out back in the dial up days. Kids today, pah! Will lessons be learned? Maybe, but too late. They should have learned these lessons before they were allowed into the real world (as much as Facebook is in the real world)
You sure?
Weren't Guide/Host accounts etc just screen names on an account along with the users other names?
So, while they weren't logged in with their day-to-day account, special accounts were still tied to the users name, viewable by someone somewhere.
I remember receiving an IM from a now friend who worked for AOL in Albuquerque, and to prove his position I asked him to confirm any other names I might used. They followed by IM about 5 seconds later. Even 22 years ago it was obvious no privacy at all existed online!
There has to be a heirarchy where people higher in the tree can see who you really are. I was a moderator in a forum where moderators had a completely separate identity to their regular profile. In one thread I saw a moderator siding with a user who was clearly in the wrong. On drawing this to the attention of the higher echelons it turned out that the user and the moderator were one and the same person.
It's a stupid idea for many reasons. How do they deal with separation of work and personal? How do they deal with someone leaving and having to remove admin permissions without breaking their personal FB account? How do they prevent someone using admin permissions outside of work? Besides the potential for deliberate abuse of power, there's a real risk of doing it by mistake. If there's an option to do something in facebook when you're at home, is that a standard option everyone has, or is it something you've only got as admin so you shouldn't really be using it for non-official purposes?
Article quote with my emphasis to extract the Spokesdroid's actual message: "Facebook's technical fix, according to the company spokesperson, involves the creation of administrative accounts not associated with personal Facebook accounts, because personal information represents a security risk."
"Even so, we contacted each of them individually to offer support, answer their questions, and take meaningful steps to ensure their safety."
Oh for pity's sake, Zuck you gawdamned cheapskate. They are now in permanent danger. Give them 1 million dollars, with early retirement; and work with the authorities for them to have a new life, new identity, and possibly new country.
That's the automatic warning system...
When you see adverts for re-location and fake passports, you know your profile's been viewed by someone with links to terrorist groups.
When you see adverts for bullet-proof vests, you know they've clicked on the ads for assault rifles and ammunition.
When you see adverts for funeral parlours, well, it's too late.
For some reason I'm suddenly reminded of the scramble suits from "A Scanner Darkly"
"Facebook's technical fix, according to the company spokesperson, involves the creation of administrative accounts not associated with personal Facebook accounts, because personal information represents a security risk."
How long did it take them to figure this out? Make your money first, worry about personal risk to your people later. That must be the Facebook way.
I'm not surprised that employees do moderation on their personal accounts. I know a few people who work there and I recall that they often do testing/dev using their personal accounts even though there is an "internal Facebook" for that, and sandbox/test accounts available.
Another interesting thing - to visit their offices you have to sign into your Facebook account to get a pass.
"Our investigation found that only a small fraction of the names were likely viewed, and we never had evidence of any threat to the people impacted or their families as a result of this matter"
What information is Facebook privy to that would make their investigation into possible criminal matters even remotely thorough?
"Well, no one used Messenger to send threats to the admins, guess there's no reason to be concerned here".