Facebook finds no evidence attackers accessed third-party apps using FB login

News Broadband Global 3 OCT 2018
Facebook finds no evidence attackers accessed third-party apps using FB login
In an update about the recent data breach of at least 50 million accounts, Facebook said it has not found any evidence so far that the attackers accessed any apps using Facebook Login. Guy Rosen, VP of product management, said Facebook reached the conclusion after analysing its logs for all third-party apps installed or logged in during the attack.

The company said it now building a tool that will let develop manually identify the users of their apps who have been affected, so that they can log them out in case of any other event. Rosen again apologised for the attack and said he will continue to update people as the company finds out more.

In the immediate aftermath of the event, Facebook reset all the access tokens of the almost 50 million accounts it knew were affected, plus of another 40 million that were subject to the vulnerability found, last year. Resetting access tokens protects the security of people’s accounts and meant those affected had to log back in to Facebook or any of the apps that use Facebook Login. 

 

Categories:

InternetMobile

Companies:

Facebook

Regions:

Global

Tags:

Customer service, Research

Related Articles

GLOBAL 22 MAR 2019

Facebook resolves security failures after millions of passwords exposed

Facebook announced that it has resolved a "glitch" that exposed up to 600 million passwords of users to up to 20,000 company employees. The company admitted that the passwords had been stored in a plain text and could date back to 2012 after cyber security blog KrebsOnSecurity exposed the security failure. "These passwords were never visible to anyone outside of Facebook and we have found no evidence to date that anyone internally abused or improperly accessed them," the company told Reuters.

GLOBAL 15 OCT 2018

Facebook says only 30 mln affected by recent security breach

Facebook said fewer people than initially reported were affected by its latest security breach. Of the 50 million people whose access tokens the company first reported affected, about 30 million actually had their tokens stolen, the continuing investigation found.

GLOBAL 9 OCT 2018

Over 4.5 bln records compromised in 945 global data breaches in H1

A total of 945 data breaches resulted in over 4.5 billion data records being compromised worldwide in the first half of 2018, according to the latest data from Gemalto's Breach Level Index. The number of lost, stolen or compromised records is up 133 percent on the year-earlier result but the total number of breaches slightly decreased over the same period, indicating an increase in the severity of each incident, said Gemalto.

GLOBAL 9 OCT 2018

Google to close down Google+ for consumers after possible data breach

Google has announced it will be closing down its Google+ social network for consumers and giving users better control over their data. The moves come after the company's Project Strobe, started earlier this year to review third-party developer access to Google account and Android device data, found out that the profiles of up to 500,000 Google+ accounts were likely exposed to external developers. The bug was discovered and fixed in March but the company cannot say which users were affected, because it only

EUROPE 4 OCT 2018

Irish data protection regulator starts investigation into Facebook data breach

Ireland's Data Protection Commission has opened an investigation into the recent data breach at Facebook. The DPC said it would look at whether Facebook violated the EU's General Data Protection Regulation by not taking appropriate technical and organisational measures to protect its users and their data. 

GLOBAL 29 SEP 2018

Facebook data breach hits at least 50 mln accounts

Facebook said the data of at least 50 million accounts has been breached. The company has alerted law enforcement and fixed the flaw, a vulnerability in the code related to its "View As" feature. Facebook also reset the access tokens of the almost 50 million accounts it knows were affected, plus of another 40 million accounts that were subject the vulnerability last year. This means a total 90 million people will have to log back in to the Facebook or any of the apps that use a Facebook login, though they

Just In

19 DEC 16:42

SLT-Mobitel launches 5G network in Sri Lanka

19 DEC 16:19

Dialog Axiata launches 5G network, connects 1.5 million subscribers

19 DEC 15:56

UK govt to ban AI-enabled nudification apps to protect women, girls

19 DEC 15:42

3 UK launches last-minute Christmas sale

Commentary

13:56

Video market set for slower growth ahead

11:38

Netflix buys Warner Bros to deepen content catalogue

11:11

KPN's mixed performance in Q3 raises questions for strategy day

15:26

Stock markets breaking records but what happened to Odido's IPO plans?

Background

01:04

The week in telecom: Wi-Fi bolt-ons take off to boost broadband growth, video market works on consolidation

01:39

The week in telecom: Netflix wins bidding for Warner Bros, Apple poaches new execs, Samsung debuts trifold

13:51

Proximus vs. Telenet: Proximus performs better in Q3 while Telenet uses up cash

14:16

Proximus Domestic still struggling with low margins

Complete profile

Before downloading the whitepaper, we would like to ask you to complete your profile with company and position. After confirming you will receive the white paper.