How to check what Facebook hackers accessed in your account

Daniel Fowler
October 16, 2018

Facebook has said the attackers gained the ability to "seize control" of those user accounts by stealing digital keys the company uses to keep users logged in.

On September 25, Facebook's engineering team discovered a security issue affecting nearly 50 million accounts; this discovery led the social media giant to reset the access tokens of nearly 50 million affected accounts, with taking a precautionary step of resetting access tokens for another 40 million accounts that have been subject to a "View As" look-up in the a year ago.

Breaking into accounts News of the hack emerged on 5 October when Facebook said it feared 50m users had been affected.

The hackers didn't access all of the affected accounts immediately. But beyond learning what information the attackers accessed, there's relatively little that users can do - beyond, that is, watching out for suspicious emails or texts.

On top of that, hackers breached the accounts of an additional 14 million people to see details from their profile, including the device types they use to access Facebook, their education background, and employment data. "For 15 million people, attackers accessed two sets of information, name and contact details - phone number, email, or both, depending on what people had on their profiles", Rosen said.

Hackers accessed much more private information in a recent Facebook breach than the social media giant previously revealed.

Australian government tries to explain ‘it’s OK to be white’ vote
This morning Finance minister Mathias Cormann apologised, saying his team only supported it because of an "administrative error". Although one-in-two Australians has a parent born overseas , racial inequality and public discourse on the issue is fraught.

Twenty-nine million accounts had some form of information stolen.

Lawmakers and investors have grown more concerned that Facebook is not doing enough to safeguard data. In addition, attackers could see the posts and lists of friends and groups of about 400,000 users. They could do so by exploiting three distinct bugs in Facebook's code.

"We haven't ruled out the possibility of smaller-scale, low-level access attempts during the time the vulnerability was exposed". They ensured that the criminals could gain access to stored passwords. For users that weren't affected, they don't need to take any immediate steps.

Facebook reassured that the attack did not affect Facebook-owned Messenger, Messenger Kids, Instagram, WhatsApp, Oculus, Workplace, Pages, payments, third-party apps or advertising or developer account. A spokesperson for the Irish data regulator said of Friday's announcement, "The update from Facebook today is significant now that Facebook has confirmed that the personal data of millions of users was taken by the perpetrators of the attack". The last report we had on the Facebook security breach pegged affected users at 50 million but Facebook has dug deeper into the issue.

The attackers, he said, began the attack by obtaining the access tokens of 400,000 seed accounts.

Other reports by

Discuss This Article

FOLLOW OUR NEWSPAPER