Bug in Facebook’s photos API exposed photos of up to 6.8m users

A recently-discovered bug in a Facebook photo API exposed personal photos of up to 6.8 million Facebook users to up to 1,500 third-party apps, including photos that users uploaded to Facebook but chose not to share.