Facebook has been hit with a data breach affecting around 50 million users, and forcing 90 million to log back in, the social media giant announced on Friday.
The breach was discovered on September 25. Hackers were able to get in using Facebook’s “ViewAs” feature, the firm said in a blog post.
This enabled the attackers to create access tokens to hijack user accounts. They also reportedly gained profile information on Facebook users, enabled by Facebook’s video uploading feature.
The episode draw worldwide attention, and left observers aghast.
“These types of incidents serve as a reminder that no organization is immune to cyber threats,” says Matthew Maglieri, CISO for Ashley Madison. “Facebook is at the forefront of web application security and have an incredibly talented team dedicated to protecting the security and privacy of their users.”