Take a read of this article written by a frustrated Facebook user, who finally managed to get one of the biggest publications to take interested in his concern:
I appreciate your service. I really do. I’m sure that many of your 400 million active users appreciate it as well. But now that you have a market value estimated at billions of dollars, it is time for you to start acting like a grown-up company. That means you have to provide basic security for your customers. And it means responding when your customers try to contact you, as I did recently to talk about an important security issue. Do you think you will be able to hold on to 400 million users if you treat them that way, and if you put their computers at risk? I don’t.
As you can see, I have had to resort to writing an open letter on Computerworld’s Web site, because all other attempts to get through to you were unsuccessful. I will be interested to see whether you respond to representatives from the media, or if you ignore everyone equally. Maybe you figure you have all 400 million of us over a barrel, since you provide a primary method of business contact and personal communication. Just keep in mind that MySpace was once the premier social networking site, and it was replaced — by you.
Here is what I wanted to talk to you about, though: You are leaving your users open to a major security risk. Five minutes ago, I clicked on a page on your site, causing a new window to open that urgently warned me that my system was loaded with viruses. I was encouraged to click a link in order to run a program that would rescue my machine, but I didn’t do that; I know malware when I see it, and I don’t allow scripts to run on my computer. The problem is that many of your 400 million users don’t know very much about malware. And by allowing things like that pop-up window from your site, you are putting their computers at risk. And that’s bad news for all of us, since the likely result will be even more botnets in the world.
This was the fifth time in a month that something like this happened to me on your site. Now, if it happened to me that often, how many millions of times did it happen to all those other Facebook users?
Why are Facebook users being exposed to risk this way? Because you allow advertisers on your site who provide malicious links. Worse, you seem to do nothing to prevent such “ads” from running programs when someone loads the page. A company with 400 million customers that’s worth billions should be able to filter out these attacks. I know plenty of sites run by much smaller entities that do as much. And I don’t know of any other major site that allows this sort of thing to happen.
And that is why I tried to contact you personally before writing this open letter. That experience taught me that contacting customer service at Facebook is clearly the biggest waste of time on the Internet. That says a lot.
I know: I and all of your millions of other users are able to use your site for free. But is that really an excuse for exposing us to dangerous stuff? Like you, Google provides a free service and makes its money by selling ads. But I’ve never had a problem like this using Google. Compare that with five times in a month.
You also might be interested to know that I have grown to doubt that Facebook can be trusted as a place to conduct business. I can’t understand why you wouldn’t do more to avoid that perception. I don’t think I am alone in thinking it. In my case, I lost my faith in your reliability when, for some unknown reason, you deleted a fan page that I had created. I lost data in that incident, and (big surprise) all efforts to contact you to talk about how I might get it back went nowhere. If you’re reading this, let me tell you that I still want my data back.
I hope I hear from you. Ideally, you would respond with a carefully crafted plan of action. But a vague promise to do better would be pretty good. Heck, at this point, even a denial that there is a problem would be better than what I’ve seen from you so far.
But I think you can do better than that. I think that now that you’re a major company, you’ll want to start acting like a grown-up. I think you’ll do that because you know that users aren’t going to stand by a company that treats them badly.
So, Facebook, what’s it going to be?
Thanks,
Ira Winkler
[Thanks Ruark, via]
I have been using facebook for years now and have never had a pop-up or potential security problem like this guy has described.
We all know about the security of Facebook itself, but i doubt that they are imbedding scripts etc into their site.
Perhaps this guy already has some malware on his pc?
TIP : use Firefox with the AdBlock Plus addon – no ad popups etc and very good.
@Jon – For sure, I’ve seen the odd little thing, but nothing that I feel is too risky; however, the fact that Computer World published the article, means that they must have seen or felt that it was legitimate – just saying :)
I’ve never had that sort of issue with facebook – but I have to agree on the issue of them not responding to customer complaints/queries! About a year ago my girlfriend’s account was hacked (most likely through a phishing page), and after trying NUMEROUS times to contact facebook asking them to please assist somehow, there was no response. Ever. Not even months later. It’s quite a big thing to lose your FB page, years of photo tags, info, friends, networks etc all gone! It’s quite a task to rebuild, and she eventually had to do it. Still today her initial profile sits there, dormant & occasionally spamming. This happened to a few people I’ve heard of as well, and was obviously a common issue. Could they not have responded with a generic acknowledgement of the issue, let alone personalised assistance?
hey, well i have actually had these problems on mine…it actually just happened yesterday!! i do like facebook. but its seems like it is so confusing trying to figure out how to do certain things. i am starting to dislike facebook. i have used myspace for about 3 yrs now and i have not had as many problems with myspace as i have with fb. and why dont they have a way that you can contact them?? i am on a fan page and you cant even write on their wall?? how come? i think the same way that you do whom ever wrote the article… i have tried to contact them on this page a few times from other post which i dont understand how they are on there. but noone replies back. it is really getting very annoying so sumone need to ask all the users what their problems are cuz i know if you go to http://www.facebook.com/wdm821?v=feed&story_fbid=358579841578#!/facebook?v=feed&story_fbid=301740726728 u will see a whole bunch of complaints from ppl about this site. thanks to whoever wrote this cuz someone need to get the clue and make fb better. cuz im sick of the crap that i get from it.
I never had problems with viruses on facebook…what antivirus do you have?
And if you dont like facebook just close account.
Do you really think that anyone will pay attention for someone like you…i cant do that..bhuhaaaaaaaaaaaaaaa….i cant do this…buhaaaaaaaaaa…that you stop crying and turn page 2…let write to techical support and bored them to death…find a woman,go out and do something thjat you know,if you cant handle the real world and technology than you should become amish…maybe picking popcorns and potatoes would be much less stress for you!!!!!
Gosh, but zeljko sounds nasty.
My facebook was suspended apparently due to phishing. I am still waiting for the code to security check me but even tho it says go to e-mail for code, nothing there. I started having withdrawel symptoms but have since decided that I can survive without facebook. It appears that I am not going to get this code and without it I can not verify myself as legitimate and access my facebook.
Maybe it’s a good thing. Thanx facebook. X
i got my account suspended for no reason to no warnings or nothing and the amount of email ive sent to try and resolve this is driveing me mad its becomeing a pathetic site more intresded in ure money than anything else , customers service is a joke , about time some one gave facebook a wake up call after all i am one of millions who keep facebook goeing via there games etc .; id like to now who regulates them ?