Facebook 'sorry' for exposing millions of users' private photos