Breaking News! Facebook had a massive security breach affecting 50 million users which could allow attackers to take control of user accounts. Guy Rosen, VP of Product Management, just posted a blog on this event a few hours ago.
The attack occurred on Tuesday, September 25 and Facebook stated that “it’s clear that attackers exploited a vulnerability in Facebook’s code that impacted “View As”, a feature that lets people see what their own profile looks like to someone else. This allowed them to steal Facebook access tokens which they could then use to take over people’s accounts.”
The vulnerability has been fixed and law enforcement has been informed. 90 million users have been logged out of their accounts, 50 million that were affected by the breach and 40 million that have been subject to a “View As” look up in the past year. Once they log back in, there will be a notification explaining what happened. The “View As” feature will not be available until a full investigation has been completed.
So far, investigators have yet to determine whether these accounts were misused or if any information was accessed. There is also no information as to who is behind the attacks, but there will be updates as the investigation makes progress.
For more details and to stay updated, watch this Security Update blog.
For more information, check out these posts:
- WordPress Security: Protect your site!
- OWASP Security Standard: What It Means And How It Can Help You
- In The News: Almost A Third Of Key Enterprise IT Spending To Be Cloud Based By 2022
- In The News: IDG 2018 Cloud Insights
- In The News: Corporate R&D Spending Hits Record Highs For The Top 1000, Despite Concerns Of Economic Protectionism – PWC