Website seeing my Facebook data?Are bookmarklets safe with facebook data?Facebook data visibility to admin...

How do you get out of your own psychology to write characters?

Eww, those bytes are gross

Lightning Data Table inline edit

What species should be used for storage of human minds?

hrule into tikz circle node

Cat is tipping over bed-side lamps during the night

Why didn't Tom Riddle take the presence of Fawkes and the Sorting Hat as more of a threat?

Does Skippy chunky peanut butter contain trans fat?

How to completely remove a package in Ubuntu (like it never existed)

Equivalent of "illegal" for violating civil law

What is the wife of a henpecked husband called?

What is a good reason for every spaceship to carry a weapon on board?

How to deal with an underperforming subordinate?

Could a warlock use the One with Shadows warlock invocation to turn invisible, and then move while staying invisible?

How do you funnel food off a cutting board?

Word for something that's always reliable, but never the best?

Memory usage: #define vs. static const for uint8_t

Count repetitions of an array

How vim overwrites readonly mode?

How can I prevent an oracle who can see into the past from knowing everything that has happened?

How big is a framed opening for a door relative to the finished door opening width?

Taking headphones when quitting job

Is there a way to not have to poll the UART of an AVR?

Why avoid shared user accounts?



Website seeing my Facebook data?


Are bookmarklets safe with facebook data?Facebook data visibility to admin staffFacebook hackerUnsolicited SMS from Facebookfacebook malicious notification 12.12.2015Facebook Chat user's APIHow can Facebook use my Whatsapp data?How did the Facebook Originull vulnerablity of Access-Control-Allow-Origin: null allow cross-origin access?Can Facebook collect data on local network?Facebook sharing data with 3rd party companies













7















I recently visited opensecrets.org and was surprised to see a message box in the lower right corner of the window asking if I wanted to talk, and displaying my name.



The pop-up says Chat with opensecrets.org in Messenger.



As far as I know, I haven't allowed Facebook to share any data with this site, so how does this website know my name?










share|improve this question









New contributor




Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

























    7















    I recently visited opensecrets.org and was surprised to see a message box in the lower right corner of the window asking if I wanted to talk, and displaying my name.



    The pop-up says Chat with opensecrets.org in Messenger.



    As far as I know, I haven't allowed Facebook to share any data with this site, so how does this website know my name?










    share|improve this question









    New contributor




    Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
    Check out our Code of Conduct.























      7












      7








      7








      I recently visited opensecrets.org and was surprised to see a message box in the lower right corner of the window asking if I wanted to talk, and displaying my name.



      The pop-up says Chat with opensecrets.org in Messenger.



      As far as I know, I haven't allowed Facebook to share any data with this site, so how does this website know my name?










      share|improve this question









      New contributor




      Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.












      I recently visited opensecrets.org and was surprised to see a message box in the lower right corner of the window asking if I wanted to talk, and displaying my name.



      The pop-up says Chat with opensecrets.org in Messenger.



      As far as I know, I haven't allowed Facebook to share any data with this site, so how does this website know my name?







      facebook






      share|improve this question









      New contributor




      Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.











      share|improve this question









      New contributor




      Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.









      share|improve this question




      share|improve this question








      edited 8 hours ago









      schroeder

      77k30170206




      77k30170206






      New contributor




      Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.









      asked 11 hours ago









      Bolton BaileyBolton Bailey

      1414




      1414




      New contributor




      Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.





      New contributor





      Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.






      Bolton Bailey is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
      Check out our Code of Conduct.






















          1 Answer
          1






          active

          oldest

          votes


















          23














          I went on that website and this is what I saw:



          Screenshot of opensecrets.org



          They are using the Customer Chat Plugin from Facebook.



          They don't know your name, they're just embedding an iframe to allow you to speak with their Facebook page's administrator(s).



          Only Facebook knows who you are.






          share|improve this answer



















          • 3





            Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?

            – A. Hersean
            6 hours ago






          • 4





            @A.Hersean That's really an iframe, so the website can't read the name nor the discussion.

            – Benoit Esnard
            6 hours ago






          • 40





            "Only Facebook knows who you are." Sounds like a quote from a horror movie.

            – Overmind
            6 hours ago






          • 2





            Keep in mind that if you continue then they will know you are chatting with them from their web page.

            – Michael Hampton
            4 hours ago






          • 3





            Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.

            – Flater
            3 hours ago













          Your Answer








          StackExchange.ready(function() {
          var channelOptions = {
          tags: "".split(" "),
          id: "162"
          };
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function() {
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled) {
          StackExchange.using("snippets", function() {
          createEditor();
          });
          }
          else {
          createEditor();
          }
          });

          function createEditor() {
          StackExchange.prepareEditor({
          heartbeatType: 'answer',
          autoActivateHeartbeat: false,
          convertImagesToLinks: false,
          noModals: true,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: null,
          bindNavPrevention: true,
          postfix: "",
          imageUploader: {
          brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
          contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
          allowUrls: true
          },
          noCode: true, onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          });


          }
          });






          Bolton Bailey is a new contributor. Be nice, and check out our Code of Conduct.










          draft saved

          draft discarded


















          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsecurity.stackexchange.com%2fquestions%2f204218%2fwebsite-seeing-my-facebook-data%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown

























          1 Answer
          1






          active

          oldest

          votes








          1 Answer
          1






          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes









          23














          I went on that website and this is what I saw:



          Screenshot of opensecrets.org



          They are using the Customer Chat Plugin from Facebook.



          They don't know your name, they're just embedding an iframe to allow you to speak with their Facebook page's administrator(s).



          Only Facebook knows who you are.






          share|improve this answer



















          • 3





            Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?

            – A. Hersean
            6 hours ago






          • 4





            @A.Hersean That's really an iframe, so the website can't read the name nor the discussion.

            – Benoit Esnard
            6 hours ago






          • 40





            "Only Facebook knows who you are." Sounds like a quote from a horror movie.

            – Overmind
            6 hours ago






          • 2





            Keep in mind that if you continue then they will know you are chatting with them from their web page.

            – Michael Hampton
            4 hours ago






          • 3





            Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.

            – Flater
            3 hours ago


















          23














          I went on that website and this is what I saw:



          Screenshot of opensecrets.org



          They are using the Customer Chat Plugin from Facebook.



          They don't know your name, they're just embedding an iframe to allow you to speak with their Facebook page's administrator(s).



          Only Facebook knows who you are.






          share|improve this answer



















          • 3





            Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?

            – A. Hersean
            6 hours ago






          • 4





            @A.Hersean That's really an iframe, so the website can't read the name nor the discussion.

            – Benoit Esnard
            6 hours ago






          • 40





            "Only Facebook knows who you are." Sounds like a quote from a horror movie.

            – Overmind
            6 hours ago






          • 2





            Keep in mind that if you continue then they will know you are chatting with them from their web page.

            – Michael Hampton
            4 hours ago






          • 3





            Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.

            – Flater
            3 hours ago
















          23












          23








          23







          I went on that website and this is what I saw:



          Screenshot of opensecrets.org



          They are using the Customer Chat Plugin from Facebook.



          They don't know your name, they're just embedding an iframe to allow you to speak with their Facebook page's administrator(s).



          Only Facebook knows who you are.






          share|improve this answer













          I went on that website and this is what I saw:



          Screenshot of opensecrets.org



          They are using the Customer Chat Plugin from Facebook.



          They don't know your name, they're just embedding an iframe to allow you to speak with their Facebook page's administrator(s).



          Only Facebook knows who you are.







          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered 9 hours ago









          Benoit EsnardBenoit Esnard

          7,64444051




          7,64444051








          • 3





            Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?

            – A. Hersean
            6 hours ago






          • 4





            @A.Hersean That's really an iframe, so the website can't read the name nor the discussion.

            – Benoit Esnard
            6 hours ago






          • 40





            "Only Facebook knows who you are." Sounds like a quote from a horror movie.

            – Overmind
            6 hours ago






          • 2





            Keep in mind that if you continue then they will know you are chatting with them from their web page.

            – Michael Hampton
            4 hours ago






          • 3





            Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.

            – Flater
            3 hours ago
















          • 3





            Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?

            – A. Hersean
            6 hours ago






          • 4





            @A.Hersean That's really an iframe, so the website can't read the name nor the discussion.

            – Benoit Esnard
            6 hours ago






          • 40





            "Only Facebook knows who you are." Sounds like a quote from a horror movie.

            – Overmind
            6 hours ago






          • 2





            Keep in mind that if you continue then they will know you are chatting with them from their web page.

            – Michael Hampton
            4 hours ago






          • 3





            Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.

            – Flater
            3 hours ago










          3




          3





          Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?

          – A. Hersean
          6 hours ago





          Is it really an iframe and not just a DIV section? If so, what prevents the main website to access its DOM with JS and retrieve the user's name?

          – A. Hersean
          6 hours ago




          4




          4





          @A.Hersean That's really an iframe, so the website can't read the name nor the discussion.

          – Benoit Esnard
          6 hours ago





          @A.Hersean That's really an iframe, so the website can't read the name nor the discussion.

          – Benoit Esnard
          6 hours ago




          40




          40





          "Only Facebook knows who you are." Sounds like a quote from a horror movie.

          – Overmind
          6 hours ago





          "Only Facebook knows who you are." Sounds like a quote from a horror movie.

          – Overmind
          6 hours ago




          2




          2





          Keep in mind that if you continue then they will know you are chatting with them from their web page.

          – Michael Hampton
          4 hours ago





          Keep in mind that if you continue then they will know you are chatting with them from their web page.

          – Michael Hampton
          4 hours ago




          3




          3





          Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.

          – Flater
          3 hours ago







          Maybe a slightly more detailed part to the answer that I think OP is looking for: The website does not know who you are. The website just sends a "facebook thing" to your browser, as part of its webpage. When your page loads in your browser, the "facebook thing", which runs in a facebook domain iframe, accesses your local cookie (which was created by visiting facebook), and uses that cookie to figure out your identity. The original website still has no idea what your identity is, but your local browser page (which is showing a page that once came from the web server) and Facebook does.

          – Flater
          3 hours ago












          Bolton Bailey is a new contributor. Be nice, and check out our Code of Conduct.










          draft saved

          draft discarded


















          Bolton Bailey is a new contributor. Be nice, and check out our Code of Conduct.













          Bolton Bailey is a new contributor. Be nice, and check out our Code of Conduct.












          Bolton Bailey is a new contributor. Be nice, and check out our Code of Conduct.
















          Thanks for contributing an answer to Information Security Stack Exchange!


          • Please be sure to answer the question. Provide details and share your research!

          But avoid



          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.


          To learn more, see our tips on writing great answers.




          draft saved


          draft discarded














          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsecurity.stackexchange.com%2fquestions%2f204218%2fwebsite-seeing-my-facebook-data%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown





















































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown

































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown







          Popular posts from this blog

          Why not use the yoke to control yaw, as well as pitch and roll? Announcing the arrival of...

          Couldn't open a raw socket. Error: Permission denied (13) (nmap)Is it possible to run networking commands...

          VNC viewer RFB protocol error: bad desktop size 0x0I Cannot Type the Key 'd' (lowercase) in VNC Viewer...