Robert McMillan reports:
Facebook is scrambling to fix a bug in its website that could be misused by spammers to harvest user names and photographs.
It turns out that if someone enters the e-mail address of a Facebook user along with the wrong password, Facebook returns a special “Please re-enter your password” page, which includes the Facebook photo and full name of the person associated with the address.
Read more on Computerworld.