{"id":13468,"date":"2018-09-28T12:10:02","date_gmt":"2018-09-28T20:10:02","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2018\/09\/28\/news-7235\/"},"modified":"2018-09-28T12:10:02","modified_gmt":"2018-09-28T20:10:02","slug":"news-7235","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2018\/09\/28\/news-7235\/","title":{"rendered":"Millions of accounts affected in latest Facebook hack"},"content":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Fri, 28 Sep 2018 19:39:11 +0000<\/strong><\/p>\n<p>Facebook\u00a0<a href=\"https:\/\/newsroom.fb.com\/news\/2018\/09\/security-update\/\" target=\"_blank\" rel=\"noopener\">announced<\/a>\u00a0earlier today that its social network had been hacked, resulting in 40 million accounts that were directly impacted, while another\u00a050 million were also considered to be potentially affected.<\/p>\n<p>Attackers exploited a feature in Facebook called \u201cView As,\u201d which essentially shows how your profile looks to others. The flaw enabled them to get ahold of so-called\u00a0<a href=\"https:\/\/en.wikipedia.org\/wiki\/Access_token\" target=\"_blank\" rel=\"noopener\">Access Tokens<\/a>, which allowed them to be logged in as genuine\u00a0Facebook users without having to use their password.<\/p>\n<p>The feature has for now being turned off and the underlying\u00a0<a href=\"https:\/\/blog.malwarebytes.com\/glossary\/software-vulnerability\/\" target=\"_blank\" rel=\"noopener\">vulnerability<\/a> fixed. A law enforcement investigation is ongoing to determine the full scope of this hack and identify the eventual perpetrators.<\/p>\n<p>Facebook says they have taken actions and that there is no need for users to reset their passwords, although it is a good opportunity remind users that <a href=\"https:\/\/blog.malwarebytes.com\/101\/2017\/05\/dont-need-27-different-passwords\/\" target=\"_blank\" rel=\"noopener\">passwords should be complex<\/a> and not reused across multiple services.<\/p>\n<p>We recommend people <a href=\"https:\/\/www.nytimes.com\/2018\/09\/28\/technology\/facebook-hack-data-breach.html\" target=\"_blank\" rel=\"noopener\">follow the Facebook hack story<\/a> to get a better idea of what exactly was accessed and take the necessary precautions. We will keep Labs readers informed of further developments.<\/p>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/cybercrime\/2018\/09\/millions-of-accounts-affected-in-latest-facebook-hack\/\">Millions of accounts affected in latest Facebook hack<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n<p><a href=\"https:\/\/blog.malwarebytes.com\/cybercrime\/2018\/09\/millions-of-accounts-affected-in-latest-facebook-hack\/\" target=\"bwo\" >https:\/\/blog.malwarebytes.com\/feed\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><strong>Credit to Author: Malwarebytes Labs| Date: Fri, 28 Sep 2018 19:39:11 +0000<\/strong><\/p>\n<table cellpadding='10'>\n<tr>\n<td valign='top' align='center'><a href='https:\/\/blog.malwarebytes.com\/cybercrime\/2018\/09\/millions-of-accounts-affected-in-latest-facebook-hack\/' title='Millions of accounts affected in latest Facebook hack'><img src='https:\/\/blog.malwarebytes.com\/wp-content\/uploads\/2014\/03\/facebook.jpg' border='0'  width='300px'  \/><\/a><\/td>\n<\/tr>\n<tr>\n<td valign='top' align='left'>Facebook\u00a0announced\u00a0earlier today that its social network had been breached, resulting in 40 million accounts that were directly impacted. Learn more as the Facebook breach story develops.<\/p>\n<p>Categories: <\/p>\n<ul class=\"post-categories\">\n<li><a href=\"https:\/\/blog.malwarebytes.com\/category\/cybercrime\/\" rel=\"category tag\">Cybercrime<\/a><\/li>\n<\/ul>\n<p>Tags: <a href=\"https:\/\/blog.malwarebytes.com\/tag\/access-tokens\/\" rel=\"tag\">access tokens<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/big-breaches\/\" rel=\"tag\">big breaches<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/breach\/\" rel=\"tag\">breach<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/data-breach\/\" rel=\"tag\">data breach<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/facebook\/\" rel=\"tag\">facebook<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/facebook-breach\/\" rel=\"tag\">Facebook breach<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/facebook-hack\/\" rel=\"tag\">facebook hack<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/password-reset\/\" rel=\"tag\">password reset<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/social-media\/\" rel=\"tag\">social media<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/social-networks\/\" rel=\"tag\">social networks<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/view-as\/\" rel=\"tag\">View As<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/vulnerabilities\/\" rel=\"tag\">vulnerabilities<\/a><a href=\"https:\/\/blog.malwarebytes.com\/tag\/vulnerability\/\" rel=\"tag\">vulnerability<\/a><\/p>\n<table width='100%'>\n<tr>\n<td align=right>\n<p><b>(<a href='https:\/\/blog.malwarebytes.com\/cybercrime\/2018\/09\/millions-of-accounts-affected-in-latest-facebook-hack\/' title='Millions of accounts affected in latest Facebook hack'>Read more&#8230;<\/a>)<\/b><\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n<p>The post <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\/cybercrime\/2018\/09\/millions-of-accounts-affected-in-latest-facebook-hack\/\">Millions of accounts affected in latest Facebook hack<\/a> appeared first on <a rel=\"nofollow\" href=\"https:\/\/blog.malwarebytes.com\">Malwarebytes Labs<\/a>.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10488,10378],"tags":[19625,19129,11510,4503,11172,3589,19626,19627,16453,1932,10448,19628,10752,10467],"class_list":["post-13468","post","type-post","status-publish","format-standard","hentry","category-malwarebytes","category-security","tag-access-tokens","tag-big-breaches","tag-breach","tag-cybercrime","tag-data-breach","tag-facebook","tag-facebook-breach","tag-facebook-hack","tag-password-reset","tag-social-media","tag-social-networks","tag-view-as","tag-vulnerabilities","tag-vulnerability"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13468","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=13468"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13468\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=13468"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=13468"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=13468"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}