50 million Facebook accounts hacked: All questions answered

Andrew Cummings
October 1, 2018

"We are concerned at the fact that this breach was discovered on Tuesday (last week) and affects many millions of user accounts but Facebook is unable to clarify the nature of the breach and the risk for users at this point", the regulator was quoted as saying.

This isn't something a quick password change can fix.

More than 90 million people will need to log back into their Facebook account.

On the afternoon of Tuesday, September 25, the Facebook engineering team discovered a security issue affecting nearly 50 million accounts. The hack was discovered by the company this week.

As a result, the Facebook said that around 90 million people will now have to log back in to Facebook, or any of their apps that use Facebook Login.

A class action lawsuit has already been filed in California by two Facebook users who claim the firm was negligent in allowing accounts to be compromised, reports Bloomberg. In a special conference call, Facebook founder Mark Zuckerberg said, "The vulnerability allowed the attackers to steal Facebook access tokens-the equivalent of a digital key--which they could have used to take over or access people's accounts".

There's now no need to change passwords. Fixing the vulnerability and informing law enforcement; 2. "We may never know", Mr Rosen said, adding that he did note that the scale and complexity of the hack would have required "a certain level" of expertise.

Over the past few days, Facebook noticed massive unwanted traffic in its "view as" feature, forcing company engineers and security experts to scrutinise its backend code. The company has reset the access tokens of the both 50 million affected as well as the 40 million that are at the risk of the breach.

"We will be making enquiries with Facebook and our overseas counterparts to establish the scale of the breach and if any United Kingdom citizens have been affected".

On the conference call, Guy Rosen, VP of Product Management and the author of the aforementioned statement, said that the company is working with the Federal Bureau of Investigation and said they update law enforcement "when we learn about these interactions". This appears to be another event when Facebook has failed to protect its users. It would be disingenuous to pretend that the concerns driving the backlash against Facebook are totally bipartisan, but the network has tread well into unsafe territory - and if it turns out attackers gained access to and misused sensitive user data, it could get much worse, quickly. As I've said before - the era of the Wild West in social media is over.

He further said that it's a serious and major security breach and there's no clear evidence to find the identity of hackers.

"So, if Facebook is found not to have taken sufficiently robust measures [to prevent the vulnerability], it may be held to have infringed GDPR, even if its response since has been exemplary".

Chang said the event would happen at Sunday at 6 p.m. local time or 6 AM EST/ 3 AM PST. The hackers have also tried accessing profile information like name, gender, location and photos from the compromised accounts.

Other reports by iNewsToday