Google Shuttering Google+ for Consumers After Undisclosed Data Exposure

googleplusThe Google+ social network that Google introduced back in 2011 suffered from a major bug that Google opted not to disclose to the public, reports The Wall Street Journal.

A Google+ software glitch provided outside developers with the ability to access private Google+ profile data from 2015 to March 2018. In the spring of this year, internal investigators discovered the issue and fixed it.

The problem was caused by a bug in a Google+ API designed to let app developers access profile and contact information about the people who signed up to use their apps. Google found that Google+ was also allowing developers to access the data of users who had their profiles set to private. Up to 438 apps had access to customer data.

During a two-week period in late March, Google ran tests to determine the impact of the bug, one of the people said. It found 496,951 users who had shared private profile data with a friend could have had that data accessed by an outside developer, the person said. Some of the individuals whose data was exposed to potential misuse included paying users of G Suite, a set of productivity tools including Google Docs and Drive, the person said. G Suite customers include businesses, schools and governments.

In an internal memo, Google's legal staff recommended against disclosing the bug because it would invite "immediate regulatory interest" and result in a comparison to Facebook's Cambridge Analytica scandal.

Data from hundreds of thousands of users was potentially accessible, but Google did not discover misuse of the data by outside developers. Exposed data included names, email addresses, birth dates, gender, profile photos, places lived, occupation, and relationship status.

Phone numbers, email messages, timeline posts, and direct messages were not accessible.

As a result of the data exposure, Google today announced that it is shutting down Google+ for consumers and introducing new privacy measures. According to Google, it put together a privacy task force called Project Strobe at the beginning of the year to review the company's APIs.

Buried in a long document describing all of the privacy changes being implemented, Google confirms that a Google+ bug made private Google+ content accessible to developers.

Google explains that it did not opt to disclose information about the exposed data back in March because there was no evidence of misuse and no action a developer or user could take in response.

The review did highlight the significant challenges in creating and maintaining a successful Google+ that meets consumers' expectations. Given these challenges and the very low usage of the consumer version of Google+, we decided to sunset the consumer version of Google+.

Google is planning to shut down Google+ over a 10-month period, with the social network set to be sunset next August.

In addition to shutting down Google+, Google is introducing several other privacy improvements. More granular controls will be provided for granting Google Account data to third-party apps, and Google is going to limit the number of apps that have access to consumer Gmail data.

googlepermissionschanges
For Android users, Google will limit the apps able to access Call Log and SMS permissions on Android devices, and contact interaction data will no longer be available through the Android Contacts API.

Google's full list of privacy changes can be found in its new Project Strobe blog post.

Tags: Google, Gmail

Top Rated Comments

dannyyankou Avatar
47 months ago
Choosing to intentionally not disclose a data breach is the lowest of the lows.
Score: 85 Votes (Like | Disagree)
OldSchoolMacGuy Avatar
47 months ago
It had been dead for years anyways.
Score: 56 Votes (Like | Disagree)
GaymerAdam Avatar
47 months ago
You will struggle to get me to believe Google+ ever had “thousands” of users...
Score: 51 Votes (Like | Disagree)
Cesar Battistini Avatar
47 months ago
Once again Google ****s with peoples data and nothing happens.
Imagine if Apple did something like that, the coverage would be HUGE.
Score: 38 Votes (Like | Disagree)
btrach144 Avatar
47 months ago
Google is a threat to industry security. They have no problem calling out other companies and their security issues, sometimes before even alerting said company.

But when their own products have security issues, let's sweep it under the rug.
Score: 33 Votes (Like | Disagree)
cmaier Avatar
47 months ago
Man. First Ping and now G+?

See you guys on MySpace!
Score: 30 Votes (Like | Disagree)

Popular Stories

anker 563 dock ports

Anker's Latest USB-C Docking Station Brings Triple-Display Support to M1 Macs

Wednesday May 18, 2022 7:06 am PDT by
While Apple's early M1-based Macs can only officially support a single external display, there are ways around the limitation. Anker is launching a new 10-in-1 USB-C docking station today which delivers just that. The Anker 563 USB-C dock includes two HDMI ports and a DisplayPort port, and it leverages DisplayLink to carry multiple video signals over a single connection. Given that this hub...
Prosser Series 8 3

Apple Watch Series 8 Rumored to Feature New Design With Flat Display

Wednesday May 18, 2022 6:21 am PDT by
The Apple Watch Series 8 could feature an all-new design with a flat display, according to the leaker known as "ShrimpApplePro." In his latest video on the YouTube channel Front Page Tech, Jon Prosser highlighted information from ShrimpApplePro that suggests the Apple Watch Series 8 could feature a flat display in what seems to be a design originally rumored for the Apple Watch Series 7. ...
apple ar headset concept 1

Apple's Headset Said to Feature 14 Cameras Enabling Lifelike Avatars, Jony Ive Has Remained Involved With Design

Friday May 20, 2022 6:50 am PDT by
Earlier this week, The Information's Wayne Ma outlined struggles that Apple has faced during the development of its long-rumored AR/VR headset. Now, in a follow-up report, he has shared several additional details about the wearable device. Apple headset render created by Ian Zelbo based on The Information reporting For starters, one of the headset's marquee features is said to be lifelike...
apple data auction iphone privacy ad

Apple Highlights iPhone's Latest Privacy Features in New 'Data Auction' Ad

Wednesday May 18, 2022 9:00 am PDT by
Apple today shared a new ad highlighting iPhone privacy features like App Tracking Transparency and Mail Privacy Protection that are designed to give users more transparency and control when it comes to their personal data being collected. The ad revolves around a young woman named Ellie who discovers that her personal data is being sold at an auction house, with bids being placed on her...
apple ar headset concept 2

Apple's AR/VR Headset Nearing Completion as Board Gets Demo

Thursday May 19, 2022 9:52 am PDT by
Apple last week demonstrated its upcoming AR/VR headset to Apple board members, indicating that the device is in an advanced stage of development and could see a debut in the not too distant future, reports Bloomberg. Apple has also ramped up development of the software that runs on the headset, with that software expected to be called "RealityOS," or rOS for short. Render via designer Ian ...