Personal Information of 52.5 Million Exposed by New Google+ People API Bug
Google found a new bug in the Google+ People API exposing the personal information of roughly 52.5 million following a software update introduced during November 2018.
“With the discovery of this new bug, we have decided to expedite the shut-down of all Google+ APIs; this will occur within the next 90 days,” said David Thacker, G Suite Product Management VP. “In addition, we have also decided to accelerate the sunsetting of consumer Google+ from August 2019 to April 2019.”
Google discovered the bug in the Google+ People API during ongoing standard testing procedures, and it fixed it within a week of the issue being introduced.
According to Thacker’s post, no unauthorized third party compromised the company’s systems and no evidence that the Google+ application developers with access to the exposed data for six days were aware of it or used it fraudulently in any way.
… (read more)