Facebook and MySpace have fixed errors that could have allowed data to be given out from its subdomains. A Dutch developer, Yvo Schaap, discovered the flaw and wrote on his blog: A more invasive and hidden exploit could harvest all the user s . photos, data and messages to a central server without any trace, and there is no reason why this wouldn t be happening already with both Facebook and. MySpace data could be harvested from Facebook and Facebook data.
Source: https://threatpost.com/facebook-myspace-fix-subdomain-errors-110509/73041/