“We adopted our final decision last Friday and it does contain a fine of \u20ac405m [\u00a3349m],” quoted Ireland’s Data Protection Commissioner (DPC).<\/p>\n\n\n\n
On the other hand, Instagram owner Meta, in a response to the conviction, contested the court’s decision saying:<\/p>\n\n\n\n
“This inquiry focused on old settings that we updated over a year ago and we’ve since released many new features to help keep teens safe and their information private\u201d.<\/p>\n\n\n\n
What does data leak mean on Instagram?<\/h1>\n\n\n\n![\"how](\"https:\/\/testing.dicecamp.com\/insights\/wp-content\/uploads\/2022\/09\/Screenshot-41.png\")
A screen shot demonstrates how teenager\u2019s personal information gets displayed within the \u2018Email\u2019 feature\/ Image by <\/em>David J. Stier<\/em><\/a><\/figcaption><\/figure>\n<\/div>\n\n\nA data leak on Instagram exposes the user’s personal information; such as phone number and email address, in two ways.<\/p>\n\n\n\n
- Hackers scrape your data from social media<\/strong><\/li><\/ol>\n\n\n\n
If the user’s private information is embedded within the HTML code<\/strong> of the social media website or mobile application, a hacker can easily set up to steal info by scraping. Scrapping is the collection of large data from an application for reuse.<\/p>\n\n\n\nSurprisingly, in 2019, Instagram had been making such HTML code in its mobile application for four months, until a data scientist David J. Stier<\/a> exposed it. <\/p>\n\n\n\nThere\u2019s a possibility, if a hacker knew this vulnerability, they would have actively scraped personal information from Instagram further selling it to marketing companies.<\/p>\n\n\n\n
Read the Instagram\u2019s scrape story here!<\/em><\/a><\/p>\n\n\n\n- You encounter lengthy and difficult to understand security policies<\/strong>.<\/li><\/ol>\n\n\n\n
The second way of a data breach is in the form of making vague security policies. <\/p>\n\n\n\n
Users who are less aware of their privacy rights, or those who don\u2019t understand how the cybersecurity system works; such as children, would remain unaware of the policies. <\/p>\n\n\n\n
For the case of Instagram, the second data leak scenario was discovered in the same year by the same data scientist, when in a response to his earlier email<\/a> on data breach, Instagram mentioned that children\u2019s business accounts were already showing personal phone numbers and emails.<\/p>\n\n\n\nWithin this scenario, when the audience went on to \u2018contact information\u2019 on a child\u2019s business account, the personal contact details were clearly displayed instead of anonymized data <\/strong>(see attached graphic<\/a> for demonstration). <\/p>\n\n\n\nWhile secure apps always apply a \u2018data anonymization\u2019 method for business communication, Instagram didn\u2019t just think of using this privacy method. <\/p>\n\n\n\n
An application of anonymized contact is in the Careem Car booking app<\/strong> where there\u2019s a safe option of keeping your contact information hidden from drivers by using the \u2018Call Anonymously\u2019 option.<\/p>\n\n\n\n\"This was a major breach that had significant safeguarding implications and the potential to cause real harm to children using Instagram,\"\nquotes Andy Burrows, head for making children-safety-online policies at the National Society for the Prevention of Cruelty to Children (NSPCC). <\/pre>\n\n\n\nThe Cybersecurity landscape has seen massive vulnerabilities by tech giants in the past years, but fortunately cybersecurity heroes (aka white hackers) always came to the rescue. <\/em><\/p>\n\n\n\nLearn about one such hero who\u2019s a <\/em>Pakistani ethical hacker<\/em><\/a>: Rafay Baloch. The cybersecurity expert used penetration testing and found a nasty bug in Chrome back in 2014.<\/em><\/p>\n\n\n\nLearn ethical hacking with Dice Analytics\u2019 affordable, 8 weeks training program. <\/em>
We empower the digital economy of Pakistan by offering affordable tech education for the youth. Find details on our course offering <\/em>here<\/em><\/a>.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"Instagram breaches EU’s strict guidelines of ‘privacy by design’ for children.
\nAs a result, it exposed minor’s personal contact when placing orders at their business accounts.<\/p>\n","protected":false},"author":7,"featured_media":2593,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7],"tags":[105,73,106],"class_list":{"0":"post-2589","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security","8":"tag-cyber-security","9":"tag-news","10":"tag-social-media-data-leak"},"_links":{"self":[{"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/posts\/2589","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/comments?post=2589"}],"version-history":[{"count":8,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/posts\/2589\/revisions"}],"predecessor-version":[{"id":2601,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/posts\/2589\/revisions\/2601"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/media\/2593"}],"wp:attachment":[{"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/media?parent=2589"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/categories?post=2589"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/tags?post=2589"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
A data leak on Instagram exposes the user’s personal information; such as phone number and email address, in two ways.<\/p>\n\n\n\n
- Hackers scrape your data from social media<\/strong><\/li><\/ol>\n\n\n\n
If the user’s private information is embedded within the HTML code<\/strong> of the social media website or mobile application, a hacker can easily set up to steal info by scraping. Scrapping is the collection of large data from an application for reuse.<\/p>\n\n\n\n
Surprisingly, in 2019, Instagram had been making such HTML code in its mobile application for four months, until a data scientist David J. Stier<\/a> exposed it. <\/p>\n\n\n\n
There\u2019s a possibility, if a hacker knew this vulnerability, they would have actively scraped personal information from Instagram further selling it to marketing companies.<\/p>\n\n\n\n
Read the Instagram\u2019s scrape story here!<\/em><\/a><\/p>\n\n\n\n
- You encounter lengthy and difficult to understand security policies<\/strong>.<\/li><\/ol>\n\n\n\n
The second way of a data breach is in the form of making vague security policies. <\/p>\n\n\n\n
Users who are less aware of their privacy rights, or those who don\u2019t understand how the cybersecurity system works; such as children, would remain unaware of the policies. <\/p>\n\n\n\n
For the case of Instagram, the second data leak scenario was discovered in the same year by the same data scientist, when in a response to his earlier email<\/a> on data breach, Instagram mentioned that children\u2019s business accounts were already showing personal phone numbers and emails.<\/p>\n\n\n\n
Within this scenario, when the audience went on to \u2018contact information\u2019 on a child\u2019s business account, the personal contact details were clearly displayed instead of anonymized data <\/strong>(see attached graphic<\/a> for demonstration). <\/p>\n\n\n\n
While secure apps always apply a \u2018data anonymization\u2019 method for business communication, Instagram didn\u2019t just think of using this privacy method. <\/p>\n\n\n\n
An application of anonymized contact is in the Careem Car booking app<\/strong> where there\u2019s a safe option of keeping your contact information hidden from drivers by using the \u2018Call Anonymously\u2019 option.<\/p>\n\n\n\n
\"This was a major breach that had significant safeguarding implications and the potential to cause real harm to children using Instagram,\"\nquotes Andy Burrows, head for making children-safety-online policies at the National Society for the Prevention of Cruelty to Children (NSPCC). <\/pre>\n\n\n\n
The Cybersecurity landscape has seen massive vulnerabilities by tech giants in the past years, but fortunately cybersecurity heroes (aka white hackers) always came to the rescue. <\/em><\/p>\n\n\n\n
Learn about one such hero who\u2019s a <\/em>Pakistani ethical hacker<\/em><\/a>: Rafay Baloch. The cybersecurity expert used penetration testing and found a nasty bug in Chrome back in 2014.<\/em><\/p>\n\n\n\n
Learn ethical hacking with Dice Analytics\u2019 affordable, 8 weeks training program. <\/em>
We empower the digital economy of Pakistan by offering affordable tech education for the youth. Find details on our course offering <\/em>here<\/em><\/a>.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"Instagram breaches EU’s strict guidelines of ‘privacy by design’ for children.
\nAs a result, it exposed minor’s personal contact when placing orders at their business accounts.<\/p>\n","protected":false},"author":7,"featured_media":2593,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7],"tags":[105,73,106],"class_list":{"0":"post-2589","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security","8":"tag-cyber-security","9":"tag-news","10":"tag-social-media-data-leak"},"_links":{"self":[{"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/posts\/2589","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/comments?post=2589"}],"version-history":[{"count":8,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/posts\/2589\/revisions"}],"predecessor-version":[{"id":2601,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/posts\/2589\/revisions\/2601"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/media\/2593"}],"wp:attachment":[{"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/media?parent=2589"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/categories?post=2589"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.dicecamp.com\/insights\/wp-json\/wp\/v2\/tags?post=2589"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
- You encounter lengthy and difficult to understand security policies<\/strong>.<\/li><\/ol>\n\n\n\n