Facebook has updated its iOS app to address the flaw that enabled a user’s camera without their knowledge, possibly opening a security hole.
The flaw, discovered last week, caused the Facebook app to access the camera on the iPhone while the user browsed their feed, even if they weren’t taking a photograph or engaging in some other task that would involve the imaging sensors.
The issue can be seen in action in the Twitter video below:
Found a @facebook #security & #privacy issue. When the app is open it actively uses the camera. I found a bug in the app that lets you see the camera open behind your feed. Note that I had the camera pointed at the carpet. pic.twitter.com/B8b9oE1nbl
— Joshua Maddux (@JoshuaMaddux) November 10, 2019
The issue only appeared if the iPhone was running iOS 13.2.2, with earlier releases not showing the flaw. It also only appeared if the user had previously given the app permission to use the camera.
Facebook hasn’t explained how the app flaw came to be. If they do explain, we’ll tell you all about it.