Facebook to reward people who dob in dodgy apps

  • 11/04/2018
Facebook to reward people who dob in dodgy apps
Photo credit: Getty

Facebook says it is launching a "data abuse" bounty program to reward people who report misuse of data by app developers.

The announcement comes ahead of two days of congressional hearings starting on Tuesday, where Facebook chief executive Mark Zuckerberg will be asked how up to 87 million Facebook users' data was improperly shared with political consultancy Cambridge Analytica.

The program will reward people with first-hand knowledge and evidence of a Facebook platform app collecting and transferring user data to another party to be sold, stolen or used for scams or political influence.

Facebook didn't explicitly say how much it will fork out, saying the compensation will be based on "the impact of each report", similar to its existing bug-bounty program. While there's no maximum Facebook is willing to pay, some bug reports have resulted in payments of as much as $US40,000 (NZ$54,200), Collin Greene, Facebook's head of product security, wrote in a blog post on Tuesday outlining the program.

"Cases that prove to be true can get a reward starting at $500 (NZ$670) minimum," Facebook explains in an FAQ on the new program. "We determine bounty amounts based on a variety of factors, including (but not limited to) impact, data exposure, number of affected users and other factors."

The data-abuse bounty program is Facebook's latest response to the debacle surrounding the misappropriation by political consulting firm Cambridge Analytica of the social platform's user data. Info on up to 87 million Facebook users, most of them in the US, was obtained by Cambridge Analytica without the users' consent or knowledge, according to Facebook.

UK-based Cambridge Analytica has claimed it obtained records on only 30 million Facebook users through a researcher and has repeatedly denied reports that it used that info as part of its work for Donald Trump's 2016 campaign.

Facebook's mishandling of the Cambridge Analytica situation has put it in the political hot seat and ultimately could lead to new regulations governing data privacy. Facebook also faces a potentially massive fine if the FTC concludes that the company violated a 2011 consent decree requiring explicit user consent to share data.