Facebook Messenger Kids App Vulnerability Exposed Kids To Strangers

If you are one of those parents who think their kids are safe using Facebook Messenger Kids app, then here is some bad news. This app contains a serious security flaw that could potentially expose your kids to strangers. The Kids Messenger app could let your kids chat with unauthorized users.

Facebook Messenger Kids App Flaw

As reported by The Verge, Facebook has been quietly informing users about a security flaw in their app. The Facebook Messenger Kids app has a security flaw that could allow kids to chat with unapproved users. Facebook elaborated this flaw as a ‘technical glitch’ that exposed the kids to strangers.

As a rule, Facebook’s Messenger Kids App allows the parents to keep their kids safe while communicating on this platform. The parents can approve the users their kids would interact with.

While this security feature worked best for one-on-one chats, it didn’t prove useful for group chats. Group owners could add anyone to the group, even those not authorized for the minors. Thus, they were inadvertently allowed to chat with unauthorized users.

No Public Disclosure From Facebook

Upon noticing the flaw, Facebook turned off the group chat feature whilst also notifying their users. However, they didn’t provide any public disclosure of the flaw.

Eventually, they sent the following statement to the affected users.

Hi [PARENT],
We found a technical error that allowed [CHILD]’s friend [FRIEND] to create a group chat with [CHILD] and one or more of [FRIEND]’s parent-approved friends. We want you to know that we’ve turned off this group chat and are making sure that group chats like this won’t be allowed in the future. If you have questions about Messenger Kids and online safety, please visit our Help Center and Messenger Kids parental controls. We’d also appreciate your feedback.

While they disabled the affected group chats, it is unclear as to how long the bug remained active.

Let us know your thoughts in the comments.

Related posts

Apple Addressed Two Zero-Day Flaws In Intel-based Macs

Really Simple Security Plugin Flaw Risks 4+ Million WordPress Websites

Glove Stealer Emerges A New Malware Threat For Browsers