30 Million Facebook Users Account Hacked officially
More Investigation is ongoing
User’s Personal Info, Email Address, Phone Number and Location exposed.
The Facebook says 30 million Facebook users account data breached as a part of the security breach disclosed in September last week.
Earlier, Facebook said its 50 million user accounts were affected, but they didn’t know that it had been misused. The social networking company Facebook asked users to visit Facebook Help Center to see if their account were compromised or not.
Email address, name, phone number from those 30 million accounts were compromised in the security breach including hometown, birth date, last checked-in. It means hackers know a lot about you if you have used all these features.
The company plans to send a note to all the people whose accounts were hacked in this breach. This Cyber attack have not affected Messenger, Messenger Kids, Instagram, WhatsApp, Oculus, Workplace, Pages, payments, third-party apps, advertising or developer accounts.
In the post, the Facebook said,
"We're very sorry this happened. Your privacy is incredibly important to us, and we want to update you on what we've learned from our ongoing investigation, including which Facebook accounts are impacted, what information was accessed and what Facebook users can do about this."
Guy Rosen, VP of Product Management said,
Here’s how we found the attack that exploited this vulnerability. We saw an unusual spike of activity that began on September 14, 2018, and we started an investigation. On September 25, we determined this was actually an attack and identified the vulnerability. Within two days, we closed the vulnerability, stopped the attack, and secured people’s accounts by resetting the access tokens for people who were potentially exposed.
As a precaution, we also turned off “View As.” We’re cooperating with the FBI, which is actively investigating and asked us not to discuss who may be behind this attack.
We now know that fewer people were impacted than we originally thought. Of the 50 million people whose access tokens we believed were affected, about 30 million actually had their tokens stolen.
For 15 million people, attackers accessed two sets of information – name and contact details (phone number, email, or both, depending on what people had on their profiles). For 14 million people, the attackers accessed the same two sets of information, as well as other details people had on their profiles. This included username, gender, locale/language, relationship status, religion, hometown, self-reported current city, birthdate, device types used to access Facebook, education, work, the last 10 places they checked into or were tagged in, website, people or Pages they follow, and the 15 most recent searches. For 1 million people, the attackers did not access any information.
On Thursday, Facebook has removed 559 FB pages and 250 accounts that it claimed to break the company policies.
How To Secure Facebook Account?
- Don’t use your Facebook password similar to your any other account
- Never share your password. Always Create Unique password
- Change your password regularly.
- Use Facebook extra security features like 2 Factor authentication
- Log out Facebook when you use other computers
- Do not use Public Wi-Fi
- Do not click unknown link on your Computer or App