Facebook hack exposed 50 million users' info -- and accounts on other sites

An attack on Facebook exposed information on nearly 50 million of the social network's users, the ...

Posted: Sep 28, 2018 11:04 PM
Updated: Sep 28, 2018 11:04 PM

An attack on Facebook exposed information on nearly 50 million of the social network's users, the company announced Friday -- and gave the attackers access to those users' accounts with other sites and apps that they logged into using Facebook.

The attackers exploited a bug in a feature called "View as" that lets users see their Facebook page the way someone else would. The attackers were able to take over the accounts and use them exactly as if they were the account holders. That would include posting or viewing information shared by any of that account's friends. Facebook says no credit card information stored with the company was accessed.

Facebook said it does not know who the attackers were or where they were based. It also said it has already fixed the issue and informed the FBI and other law enforcement, as well as lawmakers and regulators. It has also informed the Irish Data Protection Commission about the breach, a step required by Europe's GDPR regulations. The commission said it received the notification, but expressed concern with its timing and lack of detail.

More than 90 million users were forcibly logged out of their accounts by Facebook and had to log back in on Friday for security reasons. The accounts of Facebook CEO Mark Zuckerberg and COO Sheryl Sandberg were among the 90 million accounts forcibly logged out by Facebook.

Users do not need to take any additional security precautions or reset their passwords, said Facebook. All logged out users will receive a notification about the issue from Facebook, but it won't tell them if they were in the group of 50 million impacted or 40 million included as a precaution.

The attackers would have also been able to access third-party services or sites accessed with a Facebook login, Facebook's Guy Rosen said in a follow-up call with reporters on Friday, though it is not yet clear if they did so. It could have also impacted Instagram accounts that use the same login as Facebook, but Rosen said WhatsApp, which is also owned by Facebook, was not impacted. The company declined to confirm if this was the largest hack it has experienced to date.

The company says it does not know if the affected accounts were misused in any way or if any user information was actually accessed. It has not determined if any specific locations or accounts were targeted. It has turned off the "View As" feature that the attackers exploited while it investigates.

"From experience, breach notifications like this always tend to get worse as time goes on and information from investigations is shared with the public," said Jessy Irwin, the head of security at cybersecurity firm Tendermint. "There's not much that is public about how those [linked] accounts are impacted, but this seems to go much deeper into Facebook's entire ecosystem than Cambridge Analytica did."

Facebook says the vulnerability is the result of three distinct bugs, and originally appeared in July 2017 when the company made a change to a video uploading feature. The company first detected some unusual activity -- a spike in user access to the site -- on September 16, 2018. It launched an investigation and uncovered this attack on Tuesday, September 25. On Wednesday it notified law enforcement and on Thursday evening it fixed the vulnerability and began resetting login tokens, according to Facebook.

The attackers stole Facebook "access tokens" which keep a person logged into their Facebook account over long periods of time so they don't have to keep signing in. Facebook reset all 50 million tokens, as well as tokens for an additional 40 million people who had used the "View as" feature in the past year as a "precautionary step." The reset also unlinked accounts like Instagram and Oculus, both of which are owned by Facebook, which users will need to relink.

"The reality here is we face constant attacks from people who want to take over accounts or steal information.... we need to do more to prevent this from happening in the first place," CEO Mark Zuckerberg said during a call with reporters shortly after the announcement.

The announcement is the latest issue for the company, which has struggled with security breaches, privacy issues and misinformation in recent years. Facebook says it is investing heavily in security going forward, and increasing the number of people working on security from 10,000 to 20,000.

"Security is an arms race and we're continuing to improve our defenses," said Zuckerberg.

-- CNN's Donie O'Sullivan and Sara O'Brien contributed reporting.

West Lafayette
Overcast
57° wxIcon
Hi: 70° Lo: 46°
Feels Like: 57°
Kokomo
Overcast
55° wxIcon
Hi: 66° Lo: 43°
Feels Like: 55°
Rensselaer
Overcast
54° wxIcon
Hi: 67° Lo: 42°
Feels Like: 54°
Fowler
Overcast
55° wxIcon
Hi: 67° Lo: 43°
Feels Like: 55°
Williamsport
Scattered Clouds
58° wxIcon
Hi: 69° Lo: 45°
Feels Like: 58°
Crawfordsville
Clear
57° wxIcon
Hi: 69° Lo: 44°
Feels Like: 57°
Frankfort
Overcast
57° wxIcon
Hi: 68° Lo: 42°
Feels Like: 57°
Delphi
Overcast
54° wxIcon
Hi: 68° Lo: 44°
Feels Like: 54°
Monticello
Overcast
54° wxIcon
Hi: 67° Lo: 44°
Feels Like: 54°
Logansport
Overcast
54° wxIcon
Hi: 65° Lo: 42°
Feels Like: 54°
Windy and Warmer Weather for Wednesday.
WLFI Radar
WLFI Temps
WLFI Planner

Indiana Coronavirus Cases

Data is updated nightly.

Confirmed Cases: 119066

Reported Deaths: 3612
CountyConfirmedDeaths
Marion21563768
Lake10745324
Elkhart6734112
St. Joseph6679115
Allen6364205
Hamilton4965109
Vanderburgh384231
Hendricks2779124
Monroe267137
Tippecanoe259013
Johnson2362125
Clark226757
Porter222447
Delaware201162
Cass19589
Vigo187928
Madison171475
LaPorte151941
Warrick140743
Floyd140464
Howard133964
Kosciusko127117
Bartholomew119357
Marshall102124
Dubois100919
Boone99746
Grant96636
Hancock94843
Noble92932
Henry82226
Jackson77610
Wayne77314
Morgan73940
Shelby68329
Daviess68129
Dearborn67928
LaGrange64711
Clinton63414
Harrison59824
Putnam59011
Gibson5455
Knox5379
Lawrence51829
Montgomery51321
DeKalb49111
White48814
Decatur46139
Miami4394
Greene42936
Fayette42314
Jasper4032
Steuben3977
Scott39311
Posey3541
Sullivan33812
Jennings31712
Franklin31525
Clay3105
Ripley3108
Orange28724
Whitley2876
Carroll28013
Adams2773
Wabash2758
Starke2737
Washington2702
Wells2694
Spencer2683
Jefferson2523
Huntington2503
Fulton2462
Tipton22922
Randolph2238
Perry22213
Jay1920
Newton17411
Owen1711
Martin1690
Pike1691
Rush1584
Vermillion1320
Fountain1302
Blackford1223
Pulaski1141
Crawford1100
Parke1072
Brown1033
Benton860
Ohio797
Union790
Switzerland690
Warren411
Unassigned0227

COVID-19 Important links and resources

As the spread of COVID-19, or as it's more commonly known as the coronavirus continues, this page will serve as your one-stop for the resources you need to stay informed and to keep you and your family safe. CLICK HERE

Closings related to the prevention of the COVID-19 can be found on our Closings page.

Community Events