Around 90 million Facebook accounts were potentially affected by a security breach that the company discovered on Tuesday.
If you were kicked out of Facebook this week and had to scrounge around to come up with a new password on the fly, you aren't alone.
Due to a security breach discovered by Facebook engineers on Tuesday, the accounts of 50 million Facebook users were affected, with 40 million more identified as at potentially at risk. All 90 million were asked to reset their passwords.
Don't worry, though: the engineers were on top of it, fixing the vulnerability issue, reporting it to authorities, resetting the access tokens for accounts, and turning off the “View As” feature, which caused the breach in the first place.
According to the announcement by Facebook:
"... Attackers exploited a vulnerability in Facebook’s code that impacted 'View As', a feature that lets people see what their own profile looks like to someone else. This allowed them to steal Facebook access tokens which they could then use to take over people’s accounts. Access tokens are the equivalent of digital keys that keep people logged in to Facebook so they don’t need to re-enter their password every time they use the app."
At this point, Facebook is still investigating the security breach and the extent to which "accounts were misused or any information accessed." They're also unaware as to who is responsible for the attack. When these questions are answered, Facebook will make that information available.
The company also reassured users that protecting security is of utmost importance to them. To read the full statement from Facebook, click here.
This is still a developing story, and as more information becomes available, we will update as needed.
Were you one of the 90 million Facebook users who had to reset their password? What do you think about the way Facebook has handled the situation? Tell us in the comments below!