Google Bug Sent Private Videos to the Wrong People
| Google Bug Sent Private Videos to the Wrong People | |
|---|---|
| Short Title | Google Photos Bug Sent Private Videos to the Wrong People |
| Location | Global |
| Date | Early 2020 |
| Solove Harm | Disclosure, Insecurity |
| Information | Physical Characteristics, Identifying, Behavioral |
| Threat Actors | |
| Individuals | |
| Affected | Google Takeout users |
| High Risk Groups | |
| Tangible Harms | |
Google announced about a security and privacy bug affecting Google Photos users: for some time, it was possible for private videos to be downloaded by unrelated users.
Description
In early 2020 for a time, it was possible for private videos from Google Photos to be downloaded by unrelated users. The bug happened through Google Takeout, a service that lets a user download archives of their Google data. Apparently, the wrong videos were included in these user-generated archives, resulting in the users getting local copies of somebody else's videos. This is an example of Insecurity.
Videos incorrectly exported to unrelated users is an example of Disclosure.
Google says that the issue has been solved, and it recommends that users delete and re-export any data created during this time.