Facebook data breach – what to do next

[ad_1]
<div _ngcontent-c15 = "" innerhtml = "

Yesterday, Facebook informed users of a massive data breach affecting more than 50 million people. The breach took place three days earlier, in the afternoon of September 25th.

The social media giant said he did not know exactly what kind of information had been compromised. However, in a statement updated yesterday, he admitted that hacking had affected those who use Facebook to connect to other accounts.

How do you know if you have been touched?

If you have been affected by the violation, Facebook has disconnected you from your account yesterday. The social network said that it would also inform these people in a message at the top of their news feed on what had happened.

However, it is important to note that if you have been disconnected, you have not necessarily been a victim of a violation. Facebook also disconnected anyone who used the "View as" feature because the vulnerability was introduced as a "precautionary measure". The social network says that it will still take 40 million people or more to reconnect to their accounts, adding, "We currently have no evidence to suggest that these accounts have been compromised."

Has the problem been fixed?

According to Facebook, yes. He believes he solved the security problem, which allowed hackers to exploit a weak Facebook code to access the 'View As' privacy tool that allows users to see what their profile looks like.

Attackers could then steal access tokens allowing users to stay connected to their accounts. Then, admits Facebook, they could use them to resume profiles of people.

Facebook also temporarily disables the "View as" feature while performing a "thorough security review".

What should you do if you used Facebook to connect to other accounts / apps?

Facebook has admitted that this could be a problem, but it can be difficult to know what you have connected using your account. This information can be found in your settings. First, go to "apps and websites," then "connected with Facebook."

You will be able to find all the applications you used Facebook to connect to. It's a good idea to remove them even if you think you have not been touched by the violation. If you have been assigned, you must also change the passwords of these accounts to be sure.

What can you do to secure your Facebook account?

Facebook says it's not necessary for people to change their passwords. However, there is no harm in doing so – making sure your new password is secure and you do not use it to log in to other accounts. You can also log out of Facebook, even if you do not think you have been impacted, by using the "security and connection" section of "settings". This list lists the places where people are connected to Facebook with a one-click option to disconnect them. People who have forgotten their password can access the Facebook Help Center.

If you have not already done so, you must also enable two-factor authentication, which is also in Facebook settings.

Of course, you can also delete your Facebook account.

Does this violation fall under the GDPR?

Many of the 50 million violated customers will reside in Europe, so their data falls under the general EU update on data protection regulation (RGPD). We do not know exactly what information has been affected – the fines apply to sensitive and personal data such as credit card information, which has not been affected by Facebook. However, if attackers have accessed personal messages, all kinds of sensitive information could have been violated.

When Facebook investigates the violation, it will be interesting to see the impact of the regulations. The number of accounts had a negative impact on that of British Airways, at 50 million against 380,000, but the nature of the information consulted is important.

For the moment, users must ensure that their own security is strict. Violations occur every day and it is important to use strong passwords and at least two-factor authentication.

">

Yesterday, Facebook informed users of a massive data breach affecting more than 50 million people. The breach took place three days earlier, in the afternoon of September 25th.

The social media giant said he did not know exactly what kind of information had been compromised. However, in a statement updated yesterday, he admitted that hacking affected those who used Facebook to connect to other accounts.

How do you know if you have been touched?

If you have been affected by the violation, Facebook has disconnected you from your account yesterday. The social network said that it would also inform these people in a message placed at the top of their news feed on what had happened.

However, it is important to note that if you have been disconnected, you have not necessarily been a victim of a violation. Facebook also disconnected anyone who used the "View as" feature because the vulnerability was introduced as a "precautionary measure". The social network says that it will still take 40 million people or more to reconnect to their accounts, adding, "We currently have no evidence to suggest that these accounts have been compromised."

Has the problem been fixed?

According to Facebook, yes. He believes he solved the security problem, which allowed hackers to exploit a weak Facebook code to access the 'View As' privacy tool that allows users to see what their profile looks like.

Attackers could then steal access tokens allowing users to stay connected to their accounts. Then, admits Facebook, they could use them to resume profiles of people.

In addition, Facebook temporarily disables the "View As" feature while performing a "thorough security check".

What should you do if you used Facebook to connect to other accounts / apps?

Facebook has admitted that this could be a problem, but it can be difficult to know what you have connected using your account. This information can be found in your settings. First, go to "Applications and Websites", then "connected with Facebook".

You will be able to find all the applications you used Facebook to connect to. It's a good idea to remove them even if you think you have not been touched by the violation. If you have been assigned, you must also change the passwords of these accounts to be sure.

What can you do to secure your Facebook account?

Facebook says it's not necessary for people to change their passwords. However, there is no harm in doing so – making sure your new password is secure and you do not use it to log in to other accounts. You can also log out of Facebook, even if you do not think you have been impacted, by using the "security and connection" section of "settings". This list lists the places where people are connected to Facebook with a one-click option to disconnect from everyone. People who have forgotten their password can access the Facebook Help Center.

If you have not already done so, you must also enable two-factor authentication, which is found again in the Facebook settings.

Of course, you can also delete your Facebook account.

Does this violation fall under GDPR?

Many of the 50 million violated customers will reside in Europe, so their data falls under the general EU update on data protection regulation (RGPD). We do not know exactly what information has been affected – fines are applicable for sensitive and personal data such as credit card details, which Facebook initially stated was not affected. However, if attackers have accessed personal messages, all kinds of sensitive information could have been violated.

When Facebook investigates the violation, it will be interesting to see the impact of the regulations. The number of accounts had a negative impact on that of British Airways, at 50 million against 380,000, but the nature of the information consulted is important.

For now, users must ensure that their own security is ensured. Violations occur daily and it is important to use strong passwords and two-factor authentication as a minimum.