Friday, 28 September 2018

Facebook: 50 million accounts hit by security breach



Facebook has said 50 million user accounts were affected by a security breach which potentially enabled hackers to take over people's accounts.
 
The social media giant has not yet determined whether the accounts were misused or what information was accessed.
 
 
Nor does it know who is behind the breach or where they are based.


Facebook said the breach was discovered on Tuesday afternoon, and stemmed from a change it made to its video uploading feature in July 2017.


Something called "View As", which allows users to see what their profile looks like to someone else, subsequently became vulnerable.


Guy Rosen, from the California-based company, said hackers were able to "steal Facebook access tokens which they could then use to take over people's accounts".


In a statement on the company's website, he described access tokens as the "equivalent of digital keys that keep people logged in to Facebook so they don't need to re-enter their password every time they use the app".


He added: "It's clear that attackers exploited a vulnerability in Facebook's code.


"We've fixed the vulnerability and informed law enforcement."




SKY     News.