Google

Google Is Shutting Down Its Plus Social Network Sooner Than Expected After Discovering a Second Security Bug

The most recent bug affects 52.5 million users

What to Know

  • Google is shutting down its Plus social network in April 2019, instead of August as originally planned, because of a new security bug.
  • The most recent bug affected 52.5 million users and made private profile information available to third-party apps.
  • Google says that it has no evidence that the data was accessed or misused, and that it didn’t include passwords or financial data.

Google is shutting down its beleaguered social network sooner than expected in the wake of a new security issue that affected 52.5 million users.

Google Plus received its initial kiss of death in early October, when the company revealed that a security bug had exposed the account information of 500,000 users, including their names, email addresses, and occupations. At the time, Google planned to shut down the social network by August 2019.

But in a blog post Monday Google wrote that it discovered a second bug that allowed the profile information of 52.5 million users to be viewable by developers, even if it was set to private, using one of Google’s application programming interfaces, or APIs, for six days in November. Once again, the available data included information like users’ names, email addresses, occupations, and ages.

Google says that the bug did not give third-party apps access to users’ financial data or passwords and that it didn’t find any evidence that the private profile information was accessed or misused. However, it now plans to shut down Google Plus by April 2019, and access to its APIs in the next 90 days.

Google’s initial security bug raised hackles in Washington and with the general public because the Wall Street Journal reported at the time that Google didn’t disclose it for months because it feared regulatory scrutiny and reputational damage.

Monday’s disclosure comes a day before Google CEO Sundar Pichai is set to testify before Congress about transparency and accountability.

“We understand that our ability to build reliable products that protect your data drives user trust,” Google’s blog post says.

“We have always taken this seriously, and we continue to invest in our privacy programs to refine internal privacy review processes, create powerful data controls, and engage with users, researchers, and policymakers to get their feedback and improve our programs.”

This story first appeared on CNBC.com. More from CNBC: 
*You can now ask Amazon Alexa to read your email messages and respond by voice — here's how
*Bernie Madoff's inner circle, 10 years after his arrest
*You apply for a job. You hear nothing. Here's what to do next

Copyright CNBC
Contact Us