50 Million Facebook Users Affected By Hack, Company Faces Lawsuit
Facebookâ€™s woes appears to be ever increasing and endless. The social media giant, which is still wallowing in various condemnation attracted due to theÂ Cambridge Analytica scandalÂ and fake news propagation, it has again disclose today that aÂ security loophole may have made the data of around 50 million users availableÂ to hackers or malicious elements.
The Security Issue
In anÂ official blog post, Facebook says that it has discovered a potentially seriousÂ security flaw in the implementation of the user-facing â€˜View Asâ€™ featureÂ that lets you to see your profile as it may appear to others or the general public.
Our investigation is still in its early stages. But itâ€™s clear that attackers exploited a vulnerability in Facebookâ€™s code that impacted â€œView Asâ€ a feature that lets people see what their own profile looks like to someone else.
You may have escape from the security flaw right now, but Facebook looks quite scared. It has found that theÂ loophole may have been introduced back in July 2017Â via the addition of a new video player and hackers may have been able to get their hands on the â€˜access tokensâ€™ (digital login information) of up to 50 million profiles.
A new version of our video uploader (the interface that would be presented as a result of the first bug), introduced in July 2017, incorrectly generated an access token that had the permissions of the Facebook mobile app.
Facebook went further to say that the issue is not as a result of an engineering error and that an exploit has been found and used by some third-party hacker or malicious element. The social networking giant got aware of the hack on September 25, over 2 years post the vulnerability may have been introduced on the social media platform.
Facebook Sway Into Action!
Facebook, in its blog post, stated that it hasÂ patched up the security issue and informed the necessary law enforcementÂ agency of the same. It has also taken action to ensure the safety of its humongous user base and is forcing them to re-login into their accounts.
Facebook reset the â€˜access tokensâ€™ of those affected, as well as some additional users.
Facebook is making up to affected 50 million users log back into their account to ensure their safety. So, if youâ€™ve been asked to log back in then your data might be among the ones whose data couldâ€™ve been compromised. The social media giant is alsoÂ asking 40 million more users to re-loginÂ as theyÂ have used the â€˜View Asâ€™ feature over the past couple of years.
Also, the social media giant hasÂ â€œtemporarily disabledâ€ this feature that allows you to preview profilesÂ on the platform to prevent any further damage, it seems. Thereâ€™s currently no mention of whether any accounts have been compromised or not.
As if the company admitting that its â€˜View Asâ€™ feature had a security flaw and it couldâ€™ve been exploited to access up to 50 million user accounts wasnâ€™t enough, Facebook is now alsoÂ faced with a string of class-action complaints.
The lawsuit has been filed by Carla Echavarria and Derick Walker respectively in the U.SÂ District Court for the Northern District of California. Theyâ€™ve both alleged that Facebookâ€™s lack of security has exposed their personal info, increasing the chance of identity theft. It has further been stated that the social networking giant is involved inÂ â€œunlawful business practices, deceit by concealment, negligence, and is in violation of Californiaâ€™s Customer Records Act.â€
Both of the plaintiffs are looking for punitive damages and reward penalties, along with attorney fees or expenses, for themselves and other class members. Well, it seems like Facebook was already having a bad year and this security update made it worse. So, are you likely to stop using Facebook after this or not? Let us know in the comments below.