In a post earlier today, Facebook announced it had suffered a data breach on Tuesday 25th September affecting up to 50 million accounts, with a further 40 million accounts having been reset as a precautionary measure.
Whilst Facebook have stated that the vulnerability has now been fixed, it looks like their own developers opened the hole whilst making changes to the video uploading facility back in July 2017.
Further details can be found on Sophos’ Naked Security News site at https://nakedsecurity.sophos.com/2018/09/28/big-facebook-breach-50-million-accounts-affected/
What Should I Do Now?
If you’ve been logged out of your Facebook account on your PC or mobile, then you’re one of those affected and your account has already been reset.
For everyone else, Facebook’s Vice President of Product Management, Guy Rosen, has said there’s no need for anyone to change their passwords.
Well, we don’t agree with Guy Rosen. Given that Facebook have admitted to 50 million hacked accounts and a further 40 million accounts have been reset (that’s 90 million and counting!), and given that this vulnerability has existed for over a year, we would STRONGLY recommend that you reset your password AS SOON AS POSSIBLE.
The way Facebook admits to. things, this story will have some distance to run and the number of hacked accounts is only likely to grow in the coming days.
DON’T DELAY – CHANGE YOUR PASSWORD NOW.