Now Facebook is allowing anyone to look you up using your security phone number

Authored by fastcompany.com and submitted by PrivacyReporter

And I mean, geez, stuff like this with Facebook just isn’t a surprise anymore, is it? For years social media Big Brother had been pestering its users to secure their account with two-factor authentication (2FA) by prompting them to enter their phone number so they could get a text with a security code login when logging into their account from a new device for the first time.

On the surface, Facebook prompting people to enable 2FA was a good thing–if you have 2FA enabled it’s much harder for someone who isn’t you to log in to your account. But this being Facebook, they’re not just going to do something that is only good for the user, are they?

Last year it came to light that Facebook was using the phone numbers people submitted to the company solely so they could protect their accounts with 2FA for targeted advertising. And now, as security researcher and New York Times columnist Zeynep Tufekci pointed out, Facebook is allowing anyone to look up a user by their phone number, the same phone number that was supposed to be for security purposes only.

Yep. I can no longer keep keep private the phone number that I PROVIDED ONLY FOR SECURITY to Facebook. ZERO notification of this major, risky change. For years I urged dissidents at risk to use 2FA on Facebook. They were afraid of this. @Facebook doesn't care about their safety. pic.twitter.com/lW8wjBJlfz — zeynep tufekci (@zeynep) March 3, 2019

Oh, and Facebook won’t let users opt out of this privacy violation they never opted in to. The most you can now do is limit who can look you up with the phone number you provided to “Friends,” but you can’t hide it entirely. And remember, by default Facebook allows the whole world to find out who you are by entering your phone number.

In response to the growing outrage over Facebook’s latest data misuse scandal, a company spokesperson told TechCrunch, “We appreciate the feedback we’ve received about these settings and will take it into account.”

Comrade_Soomie on March 4th, 2019 at 13:49 UTC »

You can’t even sign up anymore without giving a phone number. It even recognizes number generators and burner numbers. If only fun could release that tech to phone companies to stop robocalls

Moos_Mumsy on March 4th, 2019 at 13:32 UTC »

Facebook asked me 1,000 times for my "security" phone number - I never gave it. I knew at some point my privacy would be violated. Also why my Facebook page doesn't have my real last name or primary e-mail address.

erickdredd on March 4th, 2019 at 13:23 UTC »

I'll never understand why anyone thinks that Facebook won't continue eroding their privacy until it's gone. I deleted that shit years ago, and every day it seems like I see just one more reason to be glad I did.