The Social Media World is ruled by FaceBook! This Social media giant is not just a platform but a lifestyle. For millions of people, Facebook has become the synonym for internet. To get online on Facebook is their daily ritual and they follow it with great determination to connect with friends and family.
Since the Launch of Facebook on February 4 2004, this social media platform managed to touch the hearts of more than 2.2 billion people. This unprecedented growth has made this online social communication platform a powerful global network.
All this popularity has made Facebook a prominent target in cyber crime world. In recent years, the company has faced intense issues of all sorts. This includes problems pertaining to:
Facebook is already attempting to counteract these issues. These never ending problems seem to pile up against the shine of Facebook. The latest menace being:
50 million people facebook accounts hacked became victim of data embezzlement as revealed by Facebook on 28th September 2018.
Security vulnerability on Facebook’s ‘View As’ feature allowed threat actors to access user’s account.
A ‘View As’ is a feature in Facebook that allows users to see how their own profile looks like to someone else. This is a privacy feature that allows people to cross-check whether certain posts that they want to hide from someone can actually view it on their profile or not. For instance, you want to hide some video or post from your brother (Mike). To check if the changes to the settings worked, you can use ‘View As’ to view your profile as if you were Mike.
The vulnerabilities in the Facebook’s View As tool have existed since July 2017.
The threat actors exploited the vulnerabilities in FaceBook’s View as Feature to gain access to steal Facebook’s Access Tokens.
Access tokens are a sort of digital keys that is created by Facebook once a user logs in to their facebook accounts hacked. These token enable users to remain logged in Facebook accounts hacked so that they do not have to renter their passwords every time they open Facebook standalone app or inside a browser. It is valid till a limited period of time.
Cyber maniacs stole these access tokens to gain access to user accounts.
The vulnerabilities in the View As feature that led to the misappropriation of Access token include:
This essentially gave the user using the View As feature access to the account of the person they were simulating.
Those who discovered this Facebook vulnerability could easily misuse it to gain Access Tokens to other people’s account.
Around 50 million user facebook accounts hacked have fallen prey to this Facebook vulnerability, however, the way the victims’ accounts have been misused is still not known.
Hits: 115
Subscribe to our newsletter today to receive updates on the Latest News and Threats.
Want to stay informed about the latest threats & malware? Sign up for our newsletter & learn how to get rid of all types of threats from your computer.