Picasa Unlisted Albums Privacy Issue Fixed

Google's photo storing app Picasa Web Albums had a bit of a privacy vulnerability. When you create an unlisted album to send to friends, you'll usually not expect the URL to get out to non-friends -- that's why Google included an authentication key parameter in the URL so it's not possible to quickly guess the address (they didn't in the beginning, which allowed you to e.g. see Larry Page's unlisted album, but Google were later convinced it makes sense). However, Google allowed outgoing links in comments to photos of those unlisted albums. When you entered e.g. "Great photo, also see http://example.com" as a comment just a while ago, Google would automatically create a direct link to Example.com. As you know if you're a webmaster, when someone clicks such a direct link - ...