BY
An estimated 50 million user profiles were affected by a security breach, Facebook confirmed in a blog post today. The breach allowed attackers to take over the accounts of affected users.
The breach, which the company says it discovered on Tuesday, “exploited a vulnerability in Facebook’s code that impacted ‘View As’, a feature that lets people see what their own profile looks like to someone else.” Currently the company’s internal investigation “is still in its early stages” and no indication has been given as to who might be behind the attack or what user data (if any) was exfiltrated.
Login tokens have been reset for the 50 million users directly affected, as well as an additional 40 million that the “view as” feature was used on within the past year. The vulnerability allowing the exploit, according to Facebook, “stemmed from a change we made to our video uploading feature in July 2017.”
We’ve reached out to Facebook for additional details and will update when we hear back.
This story is developing.
Comments