Technology
50 million accounts could have been hacked
A million hacked Facebook accounts isn’t cool. You know what’s even less cool? Fifty million hacked Facebook accounts.
A Friday morning press release from our connect-people-at-any-cost friends in Menlo Park detailed a potentially horrifying situation for the billions of people who use the social media service: Their accounts might have been hacked. Well, at least 50 million of them might have been.
The so-called “security update” is light on specifics, but what it does include is extremely troubling.
“We did see this attack being used at a fairly large scale.”
“On the afternoon of Tuesday, September 25, our engineering team discovered a security issue affecting almost 50 million accounts,” reads the statement. “[It’s] clear that attackers exploited a vulnerability in Facebook’s code that impacted ‘View As’, a feature that lets people see what their own profile looks like to someone else. This allowed them to steal Facebook access tokens which they could then use to take over people’s accounts.”
That’s right, almost 50 million accounts were vulnerable to this attack. As for how many were actually exploited? Well, Facebook isn’t sure.
“We did see this attack being used at a fairly large scale,” a Facebook executive said on a Friday morning press call. “The attackers could use the account as if they are the account holder.”
The statement itself didn’t provide much additional insight.
“Since we’ve only just started our investigation, we have yet to determine whether these accounts were misused or any information accessed,” continues the statement. “We also don’t know who’s behind these attacks or where they’re based.”
Facebook says it’s fixed the vulnerability, and that 90 million people may suddenly find themselves logged out of their accounts or various Facebooks apps as a result.
So, yeah, this is big.
“Security is an arms race,” Facebook CEO Mark Zuckerberg dryly noted on the press call.
Facebook is working with law enforcement, and, at least for now, says you don’t need to change your password. But maybe go ahead and log out of your account, everywhere, just to be safe.
“[If] anyone wants to take the precautionary action of logging out of Facebook, they should visit the ‘Security and Login‘ section in settings,” advises the warning. “It lists the places people are logged into Facebook with a one-click option to log out of them all.”
So yeah, click through that link and log out of your account on every service at once. After that, maybe think long and hard about whether it’s even worth logging back in.
UPDATE: Sept. 28, 2018, 10:34 a.m. PDT This story has been updated with additional comments from a Facebook executive, and Mark Zuckerberg.
!function(f,b,e,v,n,t,s){if(f.fbq)return;n=f.fbq=function(){n.callMethod?
n.callMethod.apply(n,arguments):n.queue.push(arguments)};if(!f._fbq)f._fbq=n;
n.push=n;n.loaded=!0;n.version=’2.0′;n.queue=[];t=b.createElement(e);t.async=!0;
t.src=v;s=b.getElementsByTagName(e)[0];s.parentNode.insertBefore(t,s)}(window,
document,’script’,’https://connect.facebook.net/en_US/fbevents.js’);
fbq(‘init’, ‘1453039084979896’);
if (window.mashKit) {
mashKit.gdpr.trackerFactory(function() {
fbq(‘track’, “PageView”);
}).render();
}
-
Entertainment7 days ago
‘Interior Chinatown’ review: A very ambitious, very meta police procedural spoof
-
Entertainment6 days ago
Earth’s mini moon could be a chunk of the big moon, scientists say
-
Entertainment6 days ago
The space station is leaking. Why it hasn’t imperiled the mission.
-
Entertainment5 days ago
‘Dune: Prophecy’ review: The Bene Gesserit shine in this sci-fi showstopper
-
Entertainment4 days ago
Black Friday 2024: The greatest early deals in Australia – live now
-
Entertainment3 days ago
How to watch ‘Smile 2’ at home: When is it streaming?
-
Entertainment3 days ago
‘Wicked’ review: Ariana Grande and Cynthia Erivo aspire to movie musical magic
-
Entertainment2 days ago
New teen video-viewing guidelines: What you should know