AI Privacy IncidentJune 4, 2026

Meta AI smart glasses facial-recognition code

Vendor: Meta
Product: Meta AI
Severity: low
Status: confirmed-resolved
Users affected: Meta AI app on 50M+ devices; code dormant, no biometric data collected from users per researcher review

Summary

On June 4, 2026, WIRED reported finding code for an unreleased facial-recognition feature, named NameTag internally, inside the Meta AI app that pairs with the company's smart glasses. A security researcher who reviewed the code said it was dormant. Meta removed the code in an app update within days and said no final decision had been made about launching the feature.

What happened

  • WIRED reported that the Meta AI app, which connects to Meta's Ray-Ban smart glasses, contained a facial-recognition system labeled NameTag.
  • WIRED reported that the code referenced three machine-learning models: one to detect faces, one to crop them, and one to convert them into biometric signatures.
  • A security researcher who examined the code said the system was dormant and was not sending biometric data to Meta's servers.
  • WIRED reported that the dormant code shipped on more than 50 million devices with the app installed.
  • EFF's Threat Lab said it verified the code through static analysis.
  • Meta later removed the facial-recognition code, the models, and the alerting logic in an app update.

Timeline

  • 2026-06-04 -- WIRED publishes its report on the NameTag code in the Meta AI app.
  • 2026-06-05 -- Meta releases an app update removing the facial-recognition code and models, per EFF.
  • 2026-06-08 -- Press coverage confirms the removal; Meta states no final decision had been made about launching the feature.

What the vendor has confirmed

Meta acknowledged removing the code and said no final decision had been made about whether the NameTag feature would launch. The company did not publish a postmortem or describe what biometric data, if any, it processed during internal testing.

What remains unclear

  • Meta has not disclosed what biometric data, if any, it processed while testing the feature.
  • Meta has not said whether the NameTag system will be enabled in a future release.
  • Whether the dormant code could have been activated without a further app update has not been established.

Broader context

Biometric identification built into a consumer wearable raises a distinct privacy question, because the faces captured usually belong to bystanders who never agreed to be scanned. Code shipped in a dormant state also shows that the capability inside an installed application can exceed the features a user sees, since functions can be staged ahead of any public launch.

Sources

Selvam Sivakumar
Written by

Selvam Sivakumar

Founder, Elephas.app

Selvam Sivakumar is the founder of Elephas and an expert in AI, Mac apps, and productivity tools. He writes about practical ways professionals can use AI to work smarter while keeping their data private.

LinkedInFollow

Related Resources

news

ChatGPhish: Your Trusted AI Just Became the Phishing Surface

The ChatGPhish vulnerability turns any web page into a ChatGPT phishing attack the moment you ask it to summarize. What leaks with zero clicks, why the cloud assistant is the attack surface, and how to cut the risk.

9 min readnews

OpenAI Is Accused of Sharing ChatGPT Chats With Meta and Google

A California class action accuses OpenAI of allegedly routing ChatGPT query data to Meta and Google through Meta Pixel and Google Analytics. What the suit claims, why the leak vector is the website and not the model, and whether ChatGPT is safe for sensitive work.

7 min readnews

Claude Mythos Release: What It Means for Your Private Files

Anthropic is withholding Claude Mythos on cyber-safety grounds, but the public release lands in weeks. Here is what that means for the documents you put into AI tools, and the one move worth making first.

8 min readnews

Starlink Updated Its Privacy Policy on January 15. If You Don't Opt Out, Your Data Trains AI.

On January 15, 2026, SpaceX updated the Starlink Global Privacy Policy to allow customer data, including audio, video, and shared files, to be used for AI training. A breakdown of what changed, who's affected, and what to do today.

9 min read