Norton Mobile Insight, a division of Symantec, has flagged
the Facebook application for Android as a security threat. According to the security researchers, the first time the app is launched, the device's phone number is sent over the Internet to Facebook servers, even without logging in, and regardless if the user even possesses an account on the social network.
According to the report, users need not provide the phone number, log in, or perform any app functions for the data to be sent. Facebook has allegedly investigated the reported issue, and will be providing a fix in the next revision of the app. Facebook claims to have not used the phone numbers, and has deleted them from the company servers.
The report is especially troublesome, especially given the data leak from the "Download Your Information" Facebook bug
revealed two weeks ago. It is unknown if the phone numbers harvested from this data leak were forwarded to other users.