Facebook Data Breach Allows Hackers to Take Over Users’ Accounts and Could Affect 50-Million Users

Facebook
image_pdfimage_print
Last week, Facebook detected a data breach that allows hackers to take over a user’s account. This was possible because a vulnerability in Facebook’s code impacted the “View As” feature that lets people see what their own profile looks like to someone else. This allowed hackers to steal access tokens that can be used to take over users’ accounts. Access tokens are what keep users logged in to Facebook so they don’t need to re-enter their password every time. The culprit has not yet been identified. Facebook said that it has fixed the vulnerability and reset the access tokens of almost 50-million accounts. -GEG

Another day, another major security breach, and even more pain for Facebook which in recent months has failed to keep up with the FANG euphoria.

Facebook said that on September 25 it discovered a security breach which affected almost 50 million accounts. The company said it’s investigating the breach, which allowed hackers to take over a person’s account.

In the statement, Facebook said that “attackers exploited a vulnerability in Facebook’s code that impacted “View As”, a feature that lets people see what their own profile looks like to someone else. This allowed them to steal Facebook access tokens which they could then use to take over people’s accounts. Access tokens are the equivalent of digital keys that keep people logged in to Facebook so they don’t need to re-enter their password every time they use the app.”

This attack exploited the complex interaction of multiple issues in our code. It stemmed from a change we made to our video uploading feature in July 2017, which impacted “View As.” The attackers not only needed to find this vulnerability and use it to get an access token, they then had to pivot from that account to others to steal more tokens.

The social network added that it has “yet to determine whether these accounts were misused or any information accessed.” It also doesn’t know “who’s behind these attacks or where they’re based.”

Read full article here…

 

Visit our Classified ads.

Check out our Classified ads at the bottom of this page.

Recent stories & commentary

Technocracy

Google Canceled Its ‘Smart City’ Plans for Toronto

May 26, 2020 BBC 0

People objected to sensors that would be placed everywhere collecting data on everything. They also were not not comfortable with a private company running their city [Good decision on the sensors, but it is hard to imagine that private-sector crooks would be much worse than public-sector crooks.]

Kakistocracy

Unseen Forces Behind the Rise to Fame and Fortune of Bill Gates

May 26, 2020 James Corbett 0

Gates’ banker father was head of Planned Parenthood and the family was connected to a group of wealthy intellectuals who called themselves Eugenicists. That means they advocated so-called public-health programs that secretly sterilize those who are considered by the elite to be unworthy of procreation.

Classifieds

For classified advertising rates and terms, click here. The appearance of ads on this site does not signify endorsement by the publisher. We do not attempt to verify the accuracy of statements made therein or vouch for the integrity of advertisers. However, we will investigate complaints from readers and remove any message we find to be misleading or that promotes anything fraudulent, illegal, or unethical.

1
Leave a Reply

avatar
1 Comment threads
0 Thread replies
0 Followers
 
Most reacted comment
Hottest comment thread
1 Comment authors
Tom Ball Recent comment authors
  Subscribe  
newest oldest most voted
Notify of
Tom Ball
Guest
Tom Ball

It would provide a convenient means for the FB Hasbarats to do what they want with your account and blame it on “whomever”.