AT&T Fail

Facebook FailGlad to see Facebook is on top of protecting their users’ privacy. Iljitsch van Beijnum writes on ars technica:

This past week, several users reported visiting Facebook, and, well, seeing the wrong face. Without any action on their part, a number of AT&T smartphone users found themselves logged into the popular social networking site under user accounts other than their own.

The problem was quickly attributed to “misrouting,” a term that suggests that information took a wrong turn somewhere in the network. It’s not completely impossible for individual packets flying across the network to be misdelivered — although there are multiple checksums protecting against that — but misdelivered packets will be uninvited guests at the destination computer, and thus thrown away. What apparently happened here was an unfortunate interaction of some kind between Facebook’s user authentication system and the way AT&T runs its mobile data network.