Another social media headache. Facebook says almost 50 million accounts were affected in a recent breach of the social network’s security.
Facebook announced the “security issue” in a press release written by VP of Product Management Guy Rosen on Friday, September 28, saying the company’s engineering team discovered the issue three days prior.
While Facebook’s investigation is ongoing, Rosen said it’s clear hackers exploited a vulnerability in the code behind Facebook’s “View As” feature, which allows users to see what their profiles look like to other users. That vulnerability exposed access tokens — the digital keys that keep people logged into Facebook — for affected accounts.
Rosen assured users that the company had fixed the vulnerability, turned off the “View As” function pending a security review, notified law enforcement and reset the access tokens of the almost 50 million affected accounts. The company also reset the access tokens of another 40 million accounts that were subject to a “View As” look-up in the last year.
Consequently, approximately 90 million Facebook users will need to log into their accounts again, at which point they’ll get a News Feed notification about the breach.
The company is currently investigating who is behind the attack, whether the affected accounts were misused and whether any information was accessed. In the meantime, Rosen says there’s no need for users to change their passwords.
“We’re taking this incredibly seriously and wanted to let everyone know what’s happened and the immediate action we’ve taken to protect people’s security,” the exec wrote. “People’s privacy and security is incredibly important, and we’re sorry this happened.”
You can follow us on social media at www.twitter.com/HighlightHwd or on Facebook at: http://www.facebook.com/pages/Highlight-Hollywood/193119760769011, and now on Google+ at: https://plus.google.com/+TommyLightfootGarrett90211/about
Written By: Tommy Lightfoot Garrett
Photographs are Courtesy: AP
Follow us on Twitter @HighlightHwd or @LightfootinHwd