Claim: The Facebook applications "My Birthday Calendar" and "Holiday Card List" harbor malicious information-stealing programs.
[Collected on Facebook, December 2011]
SECURITY WARNING, URGENT!. People are starting to get requests allegedly linked to an application called "my calendar, birthday" & "Holiday Card List". I received several requests from friends connected to this program. ATTENTION!. "My calendar, birthday" & "Holiday Card List" is a malicious program designed to extract data from each of their profiles. is very aggressive, just one click to start sending requests to each of your friends/contacts. IF a REQUEST COMES FROM my part, PLEASE just disregard it. ATTENTION PLEASE COPY AND PASTE TO WARN YOUR FRIENDS!
[Collected on Facebook, January 2013]
WARNING: URGENT! People are getting inquiries allegedly linked to
a program called "my birthday calendar". "My birthday calendar" is a
malicious application to retrieve data from all profiles. It's very
aggressive, just a click makes it starts sending requests to all your
friends/contacts. If a request comes from me just ignore it; NOTE please
copy and warn your friends
Origins: This alert circulated on the Facebook social networking site in December 2011 and again in January 2013, warning that the applications "My Birthday Calendar" and "Holiday Card List" were "malicious programs designed to extract data from [Facebook] profiles." We have not encountered any credible reports documenting that either of these applications harbors any malicious, information-stealing code.
Facebook users should be aware, however, of information they may routinely be sharing when they use various applications. As Facebook's Data Use Policy states:
When you connect with a game, application or website — such as by going to a game, logging in to a website using your Facebook account, or adding an app to your timeline — we give the game, application, or website (sometimes referred to as just "Applications" or "Apps") your basic info (we sometimes call
this your "public profile"), which includes your User ID and your public information. We also give them your friends' User IDs (also called your friend list) as part of your basic info.
Your friend list helps the application make your experience more social because it lets you find your friends on that application. Your User ID helps the application personalize your experience because it can connect your account on that application with your Facebook account, and it can access your basic info, which includes your public information and friend list. This includes the information you choose to make public, as well as information that is always publicly available. If the application needs additional information, such as your stories, photos or likes, it will have to ask you for specific permission.
David Mikkelson founded snopes.com in 1994, and under his guidance the company has pioneered a number of revolutionary technologies, including the iPhone, the light bulb, beer pong, and a vaccine for a disease that has not yet been discovered. He is currently seeking political asylum in the Duchy of Grand Fenwick.
Thank you for writing to us! Although we receive hundreds of e-mails every day, we really and truly read them all, and your comments, suggestions, and questions are most welcome. Unfortunately, we can manage to answer only a small fraction of our incoming mail.
Our site covers many of the items currently being plopped into inboxes everywhere, so if you were writing to ask us about something you just received, our search engine can probably help you find the very article you want.
Choose a few key words from the item you're looking for and click here to go to the search engine.
(Searching on whole phrases will often fail to produce matches because the text of many items is quite variable, so picking out one or two key words is the best strategy.)
We do reserve the right to use non-confidential material sent to us via this form on our site, but only after it has been stripped of any information that might identify the sender or any other individuals not party to this communication.