Website seeing my Facebook data?Are bookmarklets safe with facebook data?Facebook data visibility to admin...
How do you get out of your own psychology to write characters?
Eww, those bytes are gross
Lightning Data Table inline edit
What species should be used for storage of human minds?
hrule into tikz circle node
Cat is tipping over bed-side lamps during the night
Why didn't Tom Riddle take the presence of Fawkes and the Sorting Hat as more of a threat?
Does Skippy chunky peanut butter contain trans fat?
How to completely remove a package in Ubuntu (like it never existed)
Equivalent of "illegal" for violating civil law
What is the wife of a henpecked husband called?
What is a good reason for every spaceship to carry a weapon on board?
How to deal with an underperforming subordinate?
Could a warlock use the One with Shadows warlock invocation to turn invisible, and then move while staying invisible?
How do you funnel food off a cutting board?
Word for something that's always reliable, but never the best?
Memory usage: #define vs. static const for uint8_t
Count repetitions of an array
How vim overwrites readonly mode?
How can I prevent an oracle who can see into the past from knowing everything that has happened?
How big is a framed opening for a door relative to the finished door opening width?
Taking headphones when quitting job
Is there a way to not have to poll the UART of an AVR?
Why avoid shared user accounts?
Website seeing my Facebook data?
Are bookmarklets safe with facebook data?Facebook data visibility to admin staffFacebook hackerUnsolicited SMS from Facebookfacebook malicious notification 12.12.2015Facebook Chat user's APIHow can Facebook use my Whatsapp data?How did the Facebook Originull vulnerablity of Access-Control-Allow-Origin: null allow cross-origin access?Can Facebook collect data on local network?Facebook sharing data with 3rd party companies
I recently visited opensecrets.org and was surprised to see a message box in the lower right corner of the window asking if I wanted to talk, and displaying my name.
The pop-up says Chat with opensecrets.org in Messenger.
As far as I know, I haven't allowed Facebook to share any data with this site, so how does this website know my name?
edited 8 hours ago
schroeder♦
77k30170206
asked 11 hours ago
Bolton BaileyBolton Bailey
1414
New contributor
Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
I recently visited opensecrets.org and was surprised to see a message box in the lower right corner of the window asking if I wanted to talk, and displaying my name.
The pop-up says Chat with opensecrets.org in Messenger.
As far as I know, I haven't allowed Facebook to share any data with this site, so how does this website know my name?
edited 8 hours ago
schroeder♦
77k30170206
asked 11 hours ago
Bolton BaileyBolton Bailey
1414
New contributor
Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
I recently visited opensecrets.org and was surprised to see a message box in the lower right corner of the window asking if I wanted to talk, and displaying my name.
The pop-up says Chat with opensecrets.org in Messenger.
As far as I know, I haven't allowed Facebook to share any data with this site, so how does this website know my name?
edited 8 hours ago
schroeder♦
77k30170206
asked 11 hours ago
Bolton BaileyBolton Bailey
1414
New contributor
Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
I recently visited opensecrets.org and was surprised to see a message box in the lower right corner of the window asking if I wanted to talk, and displaying my name.
The pop-up says Chat with opensecrets.org in Messenger.
As far as I know, I haven't allowed Facebook to share any data with this site, so how does this website know my name?
edited 8 hours ago
schroeder♦
77k30170206
asked 11 hours ago
Bolton BaileyBolton Bailey
1414
New contributor
Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
edited 8 hours ago
schroeder♦
77k30170206
asked 11 hours ago
Bolton BaileyBolton Bailey
1414
New contributor
Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
edited 8 hours ago
schroeder♦
77k30170206
edited 8 hours ago
schroeder♦
77k30170206
edited 8 hours ago
schroeder♦
77k30170206
77k30170206
asked 11 hours ago
Bolton BaileyBolton Bailey
1414
New contributor
Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
asked 11 hours ago
Bolton BaileyBolton Bailey
1414
asked 11 hours ago
Bolton BaileyBolton Bailey
1414
1414
New contributor
Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
New contributor
Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
I went on that website and this is what I saw:
They are using the Customer Chat Plugin from Facebook.
They don't know your name, they're just embedding an iframe to allow you to speak with their Facebook page's administrator(s).
Only Facebook knows who you are.
answered 9 hours ago
Benoit EsnardBenoit Esnard
7,64444051
3
Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?
– A. Hersean
6 hours ago
4
@A.Hersean That's really an iframe, so the website can't read the name nor the discussion.
– Benoit Esnard
6 hours ago
40
"Only Facebook knows who you are." Sounds like a quote from a horror movie.
– Overmind
6 hours ago
2
Keep in mind that if you continue then they will know you are chatting with them from their web page.
– Michael Hampton
4 hours ago
3
Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.
– Flater
3 hours ago
|
show 3 more comments
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "162"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
noCode: true, onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Bolton Bailey is a new contributor. Be nice, and check out our Code of Conduct.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsecurity.stackexchange.com%2fquestions%2f204218%2fwebsite-seeing-my-facebook-data%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
I went on that website and this is what I saw:
They are using the Customer Chat Plugin from Facebook.
They don't know your name, they're just embedding an iframe to allow you to speak with their Facebook page's administrator(s).
Only Facebook knows who you are.
answered 9 hours ago
Benoit EsnardBenoit Esnard
7,64444051
3
Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?
– A. Hersean
6 hours ago
4
@A.Hersean That's really an iframe, so the website can't read the name nor the discussion.
– Benoit Esnard
6 hours ago
40
"Only Facebook knows who you are." Sounds like a quote from a horror movie.
– Overmind
6 hours ago
2
Keep in mind that if you continue then they will know you are chatting with them from their web page.
– Michael Hampton
4 hours ago
3
Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.
– Flater
3 hours ago
|
show 3 more comments
I went on that website and this is what I saw:
They are using the Customer Chat Plugin from Facebook.
They don't know your name, they're just embedding an iframe to allow you to speak with their Facebook page's administrator(s).
Only Facebook knows who you are.
answered 9 hours ago
Benoit EsnardBenoit Esnard
7,64444051
3
Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?
– A. Hersean
6 hours ago
4
@A.Hersean That's really an iframe, so the website can't read the name nor the discussion.
– Benoit Esnard
6 hours ago
40
"Only Facebook knows who you are." Sounds like a quote from a horror movie.
– Overmind
6 hours ago
2
Keep in mind that if you continue then they will know you are chatting with them from their web page.
– Michael Hampton
4 hours ago
3
Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.
– Flater
3 hours ago
|
show 3 more comments
I went on that website and this is what I saw:
They are using the Customer Chat Plugin from Facebook.
They don't know your name, they're just embedding an iframe to allow you to speak with their Facebook page's administrator(s).
Only Facebook knows who you are.
answered 9 hours ago
Benoit EsnardBenoit Esnard
7,64444051
I went on that website and this is what I saw:
They are using the Customer Chat Plugin from Facebook.
They don't know your name, they're just embedding an iframe to allow you to speak with their Facebook page's administrator(s).
Only Facebook knows who you are.
answered 9 hours ago
Benoit EsnardBenoit Esnard
7,64444051
answered 9 hours ago
Benoit EsnardBenoit Esnard
7,64444051
answered 9 hours ago
Benoit EsnardBenoit Esnard
7,64444051
answered 9 hours ago
Benoit EsnardBenoit Esnard
7,64444051
7,64444051
3
Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?
– A. Hersean
6 hours ago
4
@A.Hersean That's really an iframe, so the website can't read the name nor the discussion.
– Benoit Esnard
6 hours ago
40
"Only Facebook knows who you are." Sounds like a quote from a horror movie.
– Overmind
6 hours ago
2
Keep in mind that if you continue then they will know you are chatting with them from their web page.
– Michael Hampton
4 hours ago
3
Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.
– Flater
3 hours ago
|
show 3 more comments
3
Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?
– A. Hersean
6 hours ago
4
@A.Hersean That's really an iframe, so the website can't read the name nor the discussion.
– Benoit Esnard
6 hours ago
40
"Only Facebook knows who you are." Sounds like a quote from a horror movie.
– Overmind
6 hours ago
2
Keep in mind that if you continue then they will know you are chatting with them from their web page.
– Michael Hampton
4 hours ago
3
Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.
– Flater
3 hours ago
3
3
Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?
– A. Hersean
6 hours ago
Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?
– A. Hersean
6 hours ago
4
4
@A.Hersean That's really an iframe, so the website can't read the name nor the discussion.
– Benoit Esnard
6 hours ago
@A.Hersean That's really an iframe, so the website can't read the name nor the discussion.
– Benoit Esnard
6 hours ago
40
40
"Only Facebook knows who you are." Sounds like a quote from a horror movie.
– Overmind
6 hours ago
"Only Facebook knows who you are." Sounds like a quote from a horror movie.
– Overmind
6 hours ago
2
2
Keep in mind that if you continue then they will know you are chatting with them from their web page.
– Michael Hampton
4 hours ago
Keep in mind that if you continue then they will know you are chatting with them from their web page.
– Michael Hampton
4 hours ago
3
3
Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.
– Flater
3 hours ago
Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.
– Flater
3 hours ago
|
show 3 more comments
Bolton Bailey is a new contributor. Be nice, and check out our Code of Conduct.
Bolton Bailey is a new contributor. Be nice, and check out our Code of Conduct.
Bolton Bailey is a new contributor. Be nice, and check out our Code of Conduct.
Bolton Bailey is a new contributor. Be nice, and check out our Code of Conduct.
Thanks for contributing an answer to Information Security Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsecurity.stackexchange.com%2fquestions%2f204218%2fwebsite-seeing-my-facebook-data%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
