Sunday, 21 October, 2018

Facebook hack yielded personal information for as many as 30 million users

Facebook Image Facebook says lists of users' friends were trawled
Ginger Lawrence | 13 October, 2018, 10:30

On a conference call with reporters, Vice President of Product Management Guy Rosen said that at the request of the Federal Bureau of Investigation, which is investigating the hack, Facebook isn't providing any information about who the attackers are or their motivations or intentions.

Nearly 30 million Facebook users' phone numbers and email addresses were accessed by hackers in the biggest security breach in the company's history, Facebook said Friday.

Hackers stole neither personal messages nor financial data and did not use their access to accounts users' accounts on other websites, the company said. Now we know roughly what information the attackers accessed, and the number of people they had access to - as well as a help service for those who were effected.

While Facebook developer accounts and Oculus profiles were not affected in the breach, the extent of the attack itself makes it something developers that use Facebook both for personal and professional reasons should be aware of.

The hackers accessed name, email addresses or phone numbers from those 29 million accounts.

For 14 million victims, the attackers accessed a trove of user highly sensitive data, including gender, relationship status, religion, hometown, current city, birth date, devices used to log in, education, locations checked into, pages followed, recent searches, name, and contact details. While he declined to say what Facebook officials know about the attackers or their motivations for stealing the data, he said Facebook has no reason to believe the hack had any connection to the midterm elections scheduled for next month. However, hackers were able to read messages sent to users who were administrators of Facebook pages. Facebook says that it isn't sure whether other, "smaller-scale attacks" are involved with this breach. In addition, attackers could see the posts and lists of friends and groups of about 400,000 users.

Facebook added that the bureau has asked it not to discuss who may be behind the attack.

Woman calls police on black man babysitting white children
Parker told The New York Times that Lewis was a family friend and that the children were in no apparent danger. In the videos, Mr Lewis says: "It's 2018". "You see these things, but they're like from a distance", he said.

An additional 1 million users had no information accessed.

On Friday, the data gathering biz said a mere 30 million people were robbed of their authentication tokens. Facebook Messenger was also unaffected.

Last month Facebook revealed that its engineering team had discovered an issue where hackers were able to exploit a vulnerability in the site's "View As" feature.

Irish data protection authorities have opened an investigation into whether the security breach violated Facebook's obligations under the General Data Protection Regulation, strict new digital privacy laws enacted earlier this year.

While that information may seem innocuous since it doesn't include things like payment information, private chats within Facebook Messenger, photographs, etc., the hackers could still likely profit immensely from all that data.

Facebook first realized it was under attack after noticing a spike in activity on September 25.