New to the forums? Click here to read the "How To" Guide.

Developer? Click here to go to the Developer Forums.

Facebook Security Breach: Up to 50 million Users Affcted

Hiro_Protag0nistHiro_Protag0nist Posts: 4,828 Valuable Player

Facebook has said “almost 50 million” of its users were left exposed by a security flaw.

The company said attackers were able to exploit a vulnerability in a feature known as “View As” to gain control of people's accounts.

The breach was discovered on Tuesday, Facebook said, and it has informed police.

Users that had potentially been affected were prompted to re-log-in on Friday.

The flaw has been fixed, wrote the firm’s head of security, Guy Rosen.

"Since we’ve only just started our investigation, we have yet to determine whether these accounts were misused or any information accessed. We also don’t know who’s behind these attacks or where they’re based. “

He added: "People’s privacy and security is incredibly important, and we’re sorry this happened."


https://www.bbc.co.uk/news/technology-45686890

Comments

  • Techy111Techy111 Posts: 6,587 Volunteer Moderator
    Yeah just saw this on Sky, oops......bet thats all they need right now!!!
    A PC with lots of gadgets inside and a thing to see in 3D that you put on your head.

  • DaftnDirectDaftnDirect Posts: 5,290 Volunteer Moderator
    edited September 2018

    Although I'm not overly bothered by this particular episode. I am generally very disappointed with the news that 72% of large businesses have experienced a data breach in the last 12 months. I mean really?

    I'm not so concerned for myself but I feel for people who aren't completely aware of what goes on. Everybody has to rely in the internet these days to a greater or lesser degree and there are a lot of vulnerable people out there who can suffer from scum, I mean scammers, getting hold of their email address for example.

    Incidentally, I had an email just this week asking for $4800 to be paid in Bitcoin to avoid having my wife and all her friends contacted and informed of my 'secret', the email included my login details from something… I recognised the login ID but can't for the life of me remember what company it would have been for.

    Anyway, they're clearly harvesting whatever details they can find to convince people they know something about you. How many people get worried by this... or do have some secret they want kept from their misses and get taken in?

    It's not helped by this apparent inability that companies have to secure their data.

    (If I had a wife, I would have had a laugh about that email with her!)

    Intel 5820K [email protected], Titan X (Maxwell), 16GB Corsair Vengeance DDR4, ASRock X99 Taichi, Samsung 500Gb 960 Evo M.2, Corsair H100i v2 Cooler, Inateck KTU3FR-4P USB 3 card, Windows 10 Pro v1903 (18363.535)
  • Hiro_Protag0nistHiro_Protag0nist Posts: 4,828 Valuable Player
    Yeah, online fraud can be just as devastating as being mugged in the street and should be treated as seriously by the authorities.
  • Stryker1000Stryker1000 Posts: 486
    Trinity
    pro tip !! stop fkn using social media apps !!!! nuff said !
  • Hiro_Protag0nistHiro_Protag0nist Posts: 4,828 Valuable Player
    pro tip !! stop fkn using social media apps !!!! nuff said !


  • DaftnDirectDaftnDirect Posts: 5,290 Volunteer Moderator
    edited September 2018
    That's the thing, I don't use social media, these data breaches are everywhere... 72% of all large companies breached in the last 12 months, you can't order anything these days without passing on your email address, home address, inside leg measurement*, Shops, mobile phone companies, broadband companies, subscriptions.... you name it, social media has its own set of problems but your digital self is spread all over the place.

    *for ordering trousers that is

    Intel 5820K [email protected], Titan X (Maxwell), 16GB Corsair Vengeance DDR4, ASRock X99 Taichi, Samsung 500Gb 960 Evo M.2, Corsair H100i v2 Cooler, Inateck KTU3FR-4P USB 3 card, Windows 10 Pro v1903 (18363.535)
  • snowdogsnowdog Posts: 7,153 Valuable Player
    It's those damned Ruskies again!!! lol

    Probably means I'm going to have to change my password from 'password'. Time for something more difficult to crack. Ummmm...password1234. Sorted.

    One of the companies I used to work for 20 years or so ago had 1234 as their alarm code. And I'm not joking.  :o
    "This you have to understand. There's only one way to hurt a man who's lost everything. Give him back something broken."

    Thomas Covenant, Unbeliever
  • snowdogsnowdog Posts: 7,153 Valuable Player
    I wonder if they changed it after they sacked me, I know they changed the computer passwords lol. I was tempted to hack them but couldn't be bothered in the end lmfao :D
    "This you have to understand. There's only one way to hurt a man who's lost everything. Give him back something broken."

    Thomas Covenant, Unbeliever
  • nalex66nalex66 Posts: 5,047 Volunteer Moderator
    Yup, I ordered a new SSD on NewEgg last month, then heard a week later that a hacker group had managed to install skimming software on their payment processing page to steal all credit card details for a whole month. Nowhere is safe anymore.
    i7 5820K @ 4.25 GHz | EVGA GTX 1080 SC | Gigabyte GA-X99-UD4 | Corsair DDR4 3000 32 GB | Corsair HX 750W
    Corsair Hydro H100i | Samsung SSDs: 860 Evo 1 TB, 850 Evo 1 TB, 840 Evo 1 TB | Seagate BarraCuda HDD 3 TB
  • snowdogsnowdog Posts: 7,153 Valuable Player
    I've hacked @vannagirl's laptop. I'm watching her. Right now.

    *Grabs box of tissues*
    "This you have to understand. There's only one way to hurt a man who's lost everything. Give him back something broken."

    Thomas Covenant, Unbeliever
  • Hiro_Protag0nistHiro_Protag0nist Posts: 4,828 Valuable Player
    That's the thing, I don't use social media, these data breaches are everywhere... 72% of all large companies breached in the last 12 months, you can't order anything these days without passing on your email address, home address, inside leg measurement*, Shops, mobile phone companies, broadband companies, subscriptions.... you name it, social media has its own set of problems but your digital self is spread all over the place.

    *for ordering trousers that is


    Neither do i but those who do shouldn't be told "haha your fault for using social media".  

    A social media company should look after customer's data just the same as any other company and should pay in a big way when they fail.

    - that is aimed at anybody saying "tough luck", not you D&D.
  • ZenbaneZenbane Posts: 14,626 Valuable Player
    "Looking after a customers data" doesn't magically stop security breeches. These types of breeches happen often, to banks and even governments. The idea is that... if we know that hackers exist that can infiltrate the highest level of security, then yeah: your fault for giving personal info to Social Media.
    Are you a fan of the Myst games? Check out my Mod at http://www.mystrock.com/
    Catch me on Twitter: twitter.com/zenbane
  • DaftnDirectDaftnDirect Posts: 5,290 Volunteer Moderator
    edited September 2018
    Neither do i but those who do shouldn't be told "haha your fault for using social media".  

    A social media company should look after customer's data just the same as any other company and should pay in a big way when they fail.

    - that is aimed at anybody saying "tough luck", not you D&D.

    Agreed, I'm not a fan of saying tough luck to anyone who's been on the wrong side of scummers (henceforth that's what I'm going to call them).

    All we can do is protect ourselves as best we can and hope that the companies that hold our data are doing the same. If it's a resource issue (I.e. cost, which at the end of the day pretty much everything comes down to) but at the same time they're making massive profits, then I'd argue that there's a chance they're not doing everything they can.

    Anyway, I take it seriously.... each password I use for each company is unique, I use a VPN pretty much constantly, my archived data containing useful info about my finances, passwords etc is on an external encrypted drive that only gets plugged in when needed... my camera is turned to the wall unless I need it (which I never have come to think of it), I've always used decent security software rather than rely in Windows... and invariably that's the software that filters scam emails and websites that Windows and BT hasn't.

    …..and I'll never have an always on, always listening personal assistant in my house. How long before we find they've been hacked, to listen out for 16 digit numbers being read out, like when someone's ordering something on the phone along with card security number et al.


    Edit: oh, and my porn drive is encrypted too in case I pop my clogs before I've had a chance to wipe it clean

    Intel 5820K [email protected], Titan X (Maxwell), 16GB Corsair Vengeance DDR4, ASRock X99 Taichi, Samsung 500Gb 960 Evo M.2, Corsair H100i v2 Cooler, Inateck KTU3FR-4P USB 3 card, Windows 10 Pro v1903 (18363.535)
  • RedRizlaRedRizla Posts: 6,778 Valuable Player
    snowdog said:
    It's those damned Ruskies again!!! lol

    Probably means I'm going to have to change my password from 'password'. Time for something more difficult to crack. Ummmm...password1234. Sorted.

    One of the companies I used to work for 20 years or so ago had 1234 as their alarm code. And I'm not joking.  :o

    Or you could just use snowdog as your password..
  • CrashFuCrashFu Posts: 1,756 Valuable Player
    72% of large companies affected, but you know the only takeaway from this we're going to hear is "we should boycott Facebook!"

    Or maybe if we're lucky, we'll see some clickbait articles about whether hackers can steal our memories through our facebook VR devices ;)
    It's hard being the voice of reason when you're surrounded by unreasonable people.
  • DaftnDirectDaftnDirect Posts: 5,290 Volunteer Moderator
    edited September 2018
    and today, the Tory party's official app reveals cabinet ministers private data to anyone who guesses their email address, pretty much becoming non-news!
    Intel 5820K [email protected], Titan X (Maxwell), 16GB Corsair Vengeance DDR4, ASRock X99 Taichi, Samsung 500Gb 960 Evo M.2, Corsair H100i v2 Cooler, Inateck KTU3FR-4P USB 3 card, Windows 10 Pro v1903 (18363.535)
Sign In or Register to comment.