Facebook announced on Friday that it patched the vulnerability on Thursday night, disabled View As and reset the access tokens for the 50 million accounts it knows were targeted as well as another 40 million people who have used View As since its implementation previous year, for good measure.
"The flaw, discovered on Tuesday, allowed attackers to take over Facebook users' accounts, and the company's stock dropped 3% on the news". "We also don't know who's behind these attacks or where they're based", Rosen wrote.
Zuckerberg said in a conference call with Reuters that tokens were not used to access private messages, post anything. The company says access tokens are digital keys that keep users logged in so they don't have to re-enter their passwords each time they try to log on.
Given the avenue of attack, Facebook has also opted to turn off the "View As" feature as it conducts a security review.
The statement added: 'This allowed them to steal Facebook access tokens which they could then use to take over people's accounts.
Protesters confront Jeff Flake after he announces Kavanaugh vote
Blasey's allegation is true, the assault and Judge Kavanaugh's denial of it mean that he should not be seated on the U.S. Jeff Flake of Arizona, a member of the committee, announced he would vote to confirm Kavanaugh . "I am terrified.
Missing autistic NC boy's father blames himself
Maddox then started running after spotting a jogger on the trail around the lake, Ritch said, and continued out of sight. Police ask anyone visiting Rankin Lake Park on Saturday to call the tip line at 704-869-1075.
Rockets trying to nab Jimmy Butler, report says
Woj has been all over this Jimmy Butler frenzy and we can't thank him and hate him enough for it. What may come as a slight surprise, however, is that they aren't the favorites.
The social network says that the vulnerability has been fixed and law enforcement has been notified.
The forced logouts will ensure that no ongoing access to an account is possible with the stolen security token. "We're working hard to better understand these details - and we will update this post when we have more information, or if the facts change", he said. Facebook does not yet know if people's personal information was accessed by the attackers. After they log back in, they'll receive information at the top of their News Feed explaining what happened.
Rosen said there is no need for users to change their passwords as a precaution in this case.
Users that had potentially been affected were prompted to re-log-in on Friday. But Facebook says the investigation is continuing.