Not again, Facebook
Insights Industry
Back
Not again, Facebook
By Communicate StaffSun, Sep 30 2018
Contact
not-again-facebook

Facebook says it discovered a security breach earlier this week that affected almost 50 million accounts – out of the over two billion accounts on Facebook. The company says it has fixed the breach, which allowed hackers to take over people’s accounts.

In a statement on Friday, Facebook said that it has informed law enforcement authorities about the breach.

What happened?

There was a loophole in Facebook’s code for a feature called “View As” that lets people see what their account looks like to someone else. The vulnerability allowed people to steal access tokens – digital keys that keep people logged into Facebook so they don’t need to re-enter passwords. Once logged in, the attackers could take control.

“This attack exploited the complex interaction of multiple issues in our code. It stemmed from a change we made to our video uploading feature in July 2017, which impacted ‘View As,’” Facebook said in the statement. “The attackers not only needed to find this vulnerability and use it to get an access token, they then had to pivot from that account to others to steal more tokens.”

The consequences

While access codes were taken from 50 million accounts in the recent breach, Facebook said it doesn’t know whether any personal information was gathered or misused from those accounts.

Facebook users are shown the below message when they log in again:

“To protect your security, we may have recently logged you out of your Facebook account. On September 25th, 2018, we discovered an attack on our system where attackers stole Facebook access tokens. Access tokens are the equivalent of digital keys that attackers could then have used to take over other people’s accounts. By logging people out, we prevent attackers from using the tokens to access these accounts.

We don’t know yet if anyone’s Facebook information was accessed, but we wanted to let you know what we’re doing to protect your account. We’re continuing to investigate the situation and have informed law enforcement about the issue. If we find that more people have been affected, we’ll immediately log them out and then let them know what happened.”

Everyone whose profile used the “View As” tool in the last year will have to log in to Facebook again, and any apps that used Facebook to log in. From there, they’ll be able to see a statement from Facebook explaining what happened. The company estimated that about 90 million people will have to log in again.

It is unclear why 90 million people will have to log in again even though the breach impacted only 50 million.

The day the news broke, Friday, the company’s shares fell by three percent.

Growing Concern

User data leaks, security breaches and the spread of misinformation have forced Facebook to confront hostile congressional hearings and uproar from users.

This year alone, there was the Cambridge Analytica scandal, rumors of Facebook reading personal messages, a bug affecting 14 million users, Zuckerberg’s appearance in front of the US Senate, an FTC investigation, another appearance in front of the EU officials, Sheryl Sandberg’s appearance in front of the US Senate… the list really is quite endless.

This latest breach adds to concern that Facebook is collecting too much personal information and not looking after it properly. Data is the lifeblood of its advertising business, so any limits on its activities that stem from these missteps could crimp the company’s earning power.

 

 

 

RELATED TOPICS
Facebook
MORE IN Industry
Industry
November 01, 2020 How to Build a Winning Gen Z Strategy on Mobile

App analytics and market data company, App Annie, have released a new report that sheds light on Gen Z’s mobile behavior, in order to help marketers develop effective strategies to reach them. 98% of Gen Z report owning a smartphone, on average receiving their first at the age of 10. They are also part of […]
Industry
October 28, 2020 Micro-Influencers Are Still an Important Channel in the Marketing Funnel

Experticity, the world’s largest community of influential category experts have released a new study that sheds new light on the importance of micro-influencers on the average consumer. The study was conducted with online interviews of more than 6,000 individuals from the United States drawn from Experticity’s micro-influencer network and the general population. In addition, more […]
Industry
October 28, 2020 Global Media Insight Report Provides Concise Picture of Media Trends in UAE & KSA

Market research companies eMarketer and Global Web Index have collaborated together to release the 10th edition of the global media intelligence report. The report is a detailed compilation of data and insights about internet users’ traditional and digital media usage in 42 key markets worldwide. Communicate will be highlighting the key trends that are shaping the […]
Industry
October 27, 2020 Socialbaker’s New Report Highlights Slow Return to Normalcy in Digital Space

Social Bakers, a global AI-powered social media marketing company has released the Q3 edition of their social media trends report. The report reveals where the industry is currently standing with regard to spending and engagement globally. Here are the key findings – ADVERTISING Worldwide ad spend increased by 56.4% in Q3 compared to where it […]