Subject: Facebook security breach impacts ~50 million accounts

AlertsUSA Logo - Allow Images
SMS Alert Text:

Facebook reveals disc of security breach affecting ~50M accounts. The net result is access to accounts and personal info w/o passwords. See email for more.

Supplemental Info:

"This is a really serious security issue."

     - CEO Mark Zuckerberg

A Facebook press release issued this morning revealed the breach, but is light on specifics.

"On the afternoon of Tuesday, September 25, our engineering team discovered a security issue affecting almost 50 million accounts," reads the statement. "[It's] clear that attackers exploited a vulnerability in Facebook’s code that impacted 'View As', a feature that lets people see what their own profile looks like to someone else. This allowed them to steal Facebook access tokens which they could then use to take over people’s accounts."

According to Guy Rosen, Facebook VP of product management;

"Fifty million accounts were directly affected and we know the vulnerability was used against them.The attackers could use the account as if they are the account holder.”

The company is still investigating the attack, and does not know how much information was stolen or who is behind the hack. Facebook says that because it was access tokens that were stolen and not passwords, affected users don't need to change their security settings.

ALERTSUSA RECOMMENDATIONS

1.) Although Facebook says passwords themselves are not impacted, we STRONGLY encourage users to change them nonetheless.

2.) Log out and log back in using the new password.

3.) Remove as much personally-identifying information from your account as possible, including birth dates, credit card numbers stored on the system for purchases, addresses, telephone numbers, etc... 

In general, and extending far beyond this particular security issue, the more personally-identifying information you delete from the platform, the better. In this day and age of near daily security breaches of internet sites, the less personal information you make available, the better. 

- - -

READ THE FULL FACEBOOK PRESS RELEASE HERE:




Service Notes:

This email message is a component of the AlertsUSA Homeland Security Threat and Incident Notification Service for mobile devices. You have paid for this service and are encouraged to archive these messages.

Service Issues? Let Us Know
service@AlertsUSA.com

Discount Subscription Link (share w/ friends):
http://AlertsUSA.com/discount.html

Threat Journal Newsletter:
http://ThreatJournal.com

Connect With Us:
Twitter: https://twitter.com/ThreatJournal
Facebook: https://www.facebook.com/ThreatJournal


LikeTwitterPinterestGooglePlusLinkedInForward
AlertsUSA, Inc, 29488 Woodward Ave #423, Royal Oak, Michigan 48073, United States
You may unsubscribe or change your contact details at any time.