In response to the breach, Google is shutting down all consumer functionality of Google+. "While our engineering teams have put a lot of effort and dedication into building Google+ over the years, it has not achieved broad consumer or developer adoption".
Google says that like other tech companies, it has encouraged third-party developers to "build on top of our various services".
The affected data was limited to static, optional Google+ Profile fields including name, email address, occupation, gender and age. Google+ posts, messages, Google account data, phone numbers, or G Suite content were not accessible. The company has said it hasn't found any evidence that the exposed data was misused or inappropriately accessed by any third party.
Google is also updating Gmail's User Data Policy for the consumer version to limit access to user data.
Google today also revealed some more steps that it's taking to help protect user data.
The leaked memo says that while there is no evidence that outside developers misused any data, there is still no way to know for sure.
Though Google found the vulnerability seven months ago, it did not tell the public at the time.
The real concern here is that Google reportedly became aware of the security glitch several months ago but failed to disclose the issue due to "fears that doing so would draw regulatory scrutiny and cause reputational damage". Google claims that it "discovered and immediately patched" the bug in March 2018, but the flaw has existed since 2015.
Kim Jong Un Invites Pope Francis to North Korea
While Kim's actions since have fallen short of Washington's demands, the Trump administration is preparing for a second summit. Even so, Pompeo said both sides were "pretty close" to agreement on the details of a second summit, which Kim proposed to U.S.
As many as 438 outside apps may have connected with the flawed software.
Google ran an analysis over the two weeks prior to patching the bug which showed the Profiles of up to 500,000 Google+ accounts were potentially affected. Users have to provide "explicit permission" in order for them to gain access to it.
Saikali said it was possible that Google could face class action lawsuits over its decision not to disclose the breach.
Call logs and SMS permissions will no longer be sent to developers, while contact interaction data won't be accessible via the Android Contacts API.
Such apps include email clients, backup and productivity services, Smith said.
The API allowed users to grant access to their and their friends' profile information to apps.
Google admitted in the blog post disclosing the bug that usage of Google+ has dropped off in recent years.
- Goodale 'very concerned' by Russian spies' cyberattack on Canada, allies
- USA politics plumbs new depths as President Trump mocks women
- Quake victims struggle to survive as they resort to looting
- Federal Bureau of Investigation sought interview with Brett Kavanaugh accuser Friday night
- Atiku clinches PDP presidential ticket with 1532 votes
- Donald Trump Jr Worried for Sons Amid Kavanaugh Accusations
- Petrol, Diesel Prices Rise In Metros Despite Cuts; Check Rates Here
- National Test of EAS and Wireless Emergency Alert Held Today
- Valencia look to extend Manchester United's poor run
- Ohio State outlasts Penn State in an instant classic: 3 takeaways