Fight disinformation: Sign up for the free Mother Jones Daily newsletter and follow the news that matters.

Here’s the latest from Facebook:

For years, Facebook has been badgering its users to set up two-factor authentication, which is indeed considered best practice for online security. This requires you to give Facebook your phone number so that they can text you a passcode to log in to your account.

But last year we learned that Facebook had made all these phone numbers available to advertisers so they could target ads. Now it turns out that even if you never added it to your profile, other people can still look you up via your phone number.

Is this a big deal? In and of itself, maybe not. But there are two big harms here anyway. First, Facebook has once again revealed personal information without asking permission. The default should be to keep security information completely private unless you explicitly give permission to share it. But in this case it’s not. And not only is the default set to make it shareable, there’s not even a way to change it once you discover what’s going on.

Second, this kind of behavior will rightfully make people suspicious of security enhancements. It’s in everyone’s best interest to improve online security, and we should always feel confident that online companies are at least doing their best to keep our security information safe and private. Once again, though, Facebook has blown up this implicit contract in order to improve its bottom line by a few dollars. Nice work, guys.

BEFORE YOU CLICK AWAY!

Mother Jones was founded to do journalism differently. We stand for justice and democracy. We reject false equivalence. We go after stories others don’t. We’re a nonprofit newsroom, because the kind of truth-telling investigations we do doesn’t happen under corporate ownership.

And the essential ingredient that makes all this possible? Readers like you.

It’s reader support that enables Mother Jones to devote the time and resources to report the facts that are too difficult, expensive, or inconvenient for other news outlets to uncover. Please help with a donation today if you can—even a few bucks will make a real difference. A monthly gift would be incredible.

payment methods

BEFORE YOU CLICK AWAY!

Mother Jones was founded to do journalism differently. We stand for justice and democracy. We reject false equivalence. We go after stories others don’t. We’re a nonprofit newsroom, because the kind of truth-telling investigations we do doesn’t happen under corporate ownership.

And the essential ingredient that makes all this possible? Readers like you.

It’s reader support that enables Mother Jones to devote the time and resources to report the facts that are too difficult, expensive, or inconvenient for other news outlets to uncover. Please help with a donation today if you can—even a few bucks will make a real difference. A monthly gift would be incredible.

payment methods

We Recommend

Latest

Sign up for our free newsletter

Subscribe to the Mother Jones Daily to have our top stories delivered directly to your inbox.

Get our award-winning magazine

Save big on a full year of investigations, ideas, and insights.

Subscribe

Support our journalism

Help Mother Jones' reporters dig deep with a tax-deductible donation.

Donate