Facebook announced Friday that up to 6.8 million users could have been affected by a computer bug that exposed their private photos without their permission.
“We’re sorry this happened,” Tom Bar, an engineering director with the company, wrote in a statement.
Mr. Bar explained the bug gave third-party developers, which users had already given permission to, access to a larger variety of photos than intended.
Up to 1,500 apps built by hundreds of developers approved by Facebook could have gained access to the photos.
Typically, developers only have access to photos that users post to their timeline, but the bug exposed photos that were uploaded but not posted, as well as photos posted to the Marketplace and Facebook stories.
Facebook confirmed to The Washington Times that photos shared in the messenger app were not affected.
The bug is already fixed, but the company said developers had access for 12 days in mid to late September.
Mr. Barr explained in the statement that affected users would be notified and sent to the Help Center where they can check any of the apps they might have used.
Facebook will also be helping developers determine if the apps were improperly given access and ensure the photos are deleted.