Facebook has been hit with another Internet security breach. Naked Security reports that 50 million Facebook accounts were affected when attackers “exploited a vulnerability in Facebook’s ‘View As’ feature to steal access tokens, which are the keys that allow you to stay logged into Facebook so you don’t need to re-enter your password every time you use the app.”
A Facebook spokesman says the breach, which was discovered on September 25th, is now fixed.
“We have reset the access tokens of the almost 50 million accounts we know were affected to protect their security,” Facebook’s VP of Product Management Guy Rosen said. “We’re also taking the precautionary step of resetting access tokens for another 40 million accounts that have been subject to a ‘View As’ look-up in the last year.
“Those affected will now have to log back into Facebook, and any apps that use Facebook Login.”
Evidently, Facebook is continuing to represent an Internet security adventure.