Mr Zuckerberg faced a grilling at the mercy of U.S. Senators in April this year following the Cambridge Analytica Scandal. Since then he’s been escaping the doghouse whilst rejuvenating Facebook’s tarnished reputation. However, whilst scrambling to make amends, the tech giants once again endure a security breach, effecting 30M users. We’ll take a look at the latest scandal, discussing news that’s newsworthy!
Data breach; key information
Although the breach came to light two weeks ago, Facebook only recently detail the extent of the security hiccup. Hackers stole 30M users access tokens; they can check accessed info by checking Facebook’s Help Centre. Additionally, users receive customised alerts detailing how to recover stolen info. Guy Rosen of Facebook states;
“We’re cooperating with the FBI on this matter, they’ve asked us not to discuss who may be behind this attack”
No more info is currently available at the risk of impacting an on-going investigation. However, of the 30M users impacted, 15M had their name, phone number and/or email accessed. 14M had the same info plus other biographical info accessed. These include all profile info such as locale and religion. In addition, devices used to access the app, last ten check-ins, follows and recent searches. 1M users info wasn’t accessed.
Facebook’s security; current status
The breach started because hackers with access tokens exploited a combination of three bugs related to the ‘View As’ privacy feature. This allowed them access to numerous accounts’ friends whilst gaining more tokens. Despite the seemingly disastrous impact this breach has, the severity of this one is less than expected. Although, it’s possible it could impact user counts in the Q3 earnings report. Regardless of the limited effect, the breach casts a large shadow on Facebook’s security capabilities.
Facebook’s security processes have been under scrutiny for months now. Despite their efforts to make amends for the Cambridge Analytica scandal, it seems the company is forever digging deeper holes. People are finding new ways to exploit their data, increasing the challenge to improve their reputation.