Earlier this year, Facebook came under fire for sharing heaps of data for over 87 million users with Cambridge Analytica. As if the company wasn't already having a tough time regaining the trust of its user base, Facebook's now announced that information for around 30 million people was exposed during an attack it shut down in September.
Here's everything you need to know.
What happened?
Between July 2017 and September 2018, attackers accessed Facebook and created a security vulnerability that allowed them to retrieve access tokens to take over people's accounts.
Facebook says it noticed "an unusual spike of activity" on September 14, and on September 25, determined that it was being attacked.
Within two days, we closed the vulnerability, stopped the attack, and secured people's accounts by restoring the access tokens for people who were potentially exposed.
Facebook originally estimated that up to 50 million users had their information exposed, but that number has since dropped down to around 30 million. Of that number, 15 million users had their name and contact info (phone number and/or email) compromised while another 14 million lost that and their gender, Facebook username, location, language, relationship status, hometown, religion, current area of residence, birthdate, devices used to access Facebook, work, education, and more.
For the remaining 1 million, Facebook says that no information was compromised.
This attack did not affect Facebook Messenger, Messenger Kids, Instagram, WhatsApp, Oculus, Workplace, Pages, payments, any third-party apps, or developer/advertising accounts.
What's Facebook doing?
Facebook is working with the FBI to determine exactly how this happened, and per the official press release, the FBI's asked Facebook "not to discuss who may be behind the attack."
The 30 million affected users will see customized messages on the Facebook app and website to let them know what info of theirs was stolen, and the company's Help Center has also been updated with new information about the attack.
What can you do to protect yourself?
Facebook says it'll be reaching out to users to tell them what next steps they should take, but as always with these attacks, there are a few things you can do right now to ensure you're taking the right steps.
For starters, it's never a bad idea to reset your password when something like this happens. Also, if you're still not using a password manager or two-factor authentication, now's a good time to change that.
Here's why the PlayStation 5 DualSense controller joysticks drift
The new DualSense controller isn't the only controller with joystick drift — it's just the newest. Here's why it happens and why there's not much you can do about it.
The Galaxy Watch 4 is coming soon — here's everything you need to know
Samsung is working on a new smartwatch that'll abandon its proprietary OS for Wear OS, plus a non-invasive blood glucose tracker for diabetic users. We're just not sure if it's the Galaxy Watch 4, Galaxy Active Watch 3, or something entirely new! Here's what we do know about, and hope to see in the new Galaxy smartwatch.
Now's the perfect and time to play Ratchet and Clank for free
Still haven't played Ratchet and Clank from 2016? Now's your chance since it's free on PS4 and PS5 for everyone. This is the perfect way to gear up for Rift Apart before it launches in a few months.
Break a sweat with these great Oculus Quest 2 exercise games and apps
Do you prefer your workouts to challenge your full body? Do you care more about aerobics or muscle training? Do you need a high-speed soundtrack or a high score to motivate you? Or do you want a game first and foremost, with exercise as a happy bonus? Whatever your preferences, we have the best Oculus Quest 2 VR experiences to keep you healthy while staying indoors.