This is right on the money. FB's security model is poorly thought out, and the indifference of the CEO to privacy concerns probably has a lot to do with it. In generally, the ad-hoc revisions of their privacy settings (which have at times forced users to opt out of more permissive settings) are indicative of a poorly thought out security model. The kind of "attack" that is effective (and has been used against FB users) is the "viral app" -- basically, the typical facebook "app" requires that the app is able to perform actions on behalf of the user and see the users data, so most users don't think twice about checking these boxes.

This is a fallacy -- because it assumes that the "number of seats" is a fixed quantity. As long as the foreign students pay for their education it's probably a win for the American students. As long as there is more money coming in, there will be a way to increase capacity.

Grad school programs in the US are pretty good. People come from all over the place. Students from other countries (UK, Europe, Australia) are usually better prepared than their US counterparts. The US education system isn't so much uniformly "bad", it's just quite variable. Some students take first year grad courses in their final year and come out with a very strong background, but others are taking 9th grade math in college. Some students also come over because it's a reasonable path to immigration, so even if the programs themselves weren't very good, being in the country can open doors.