The Turkish Personal Data Protection Authority (KVKK) fined Facebook today 1.65 million Turkish lira ($270,000) for an API bug that exposed personal photos of 300,000 Turkish users.

The fine is in relation to a security incident that Facebook disclosed in December 2018.

At the time, Facebook said that a bug in the Photo API might have exposed the non-public photos of 6.8 million users to around 1,500 apps built by 876 developers.

The link for this article located at ZDNet is no longer available.