On September 25 it was discovered that a security issue affected 50 million Facebook accounts which hackers exploited a vulnerability in Facebook code.
It impacted “View As” feature that lets people see what their own profile looks like to someone else, as a result this feature has been closed.
Because they attacked that vulnerability they was able to steal Facebook access tokens which they could then use to take over people’s accounts, an access code is the equivalent of a digital key that keep people logged into Facebook so they do not have to keep having to log-in every time they use the app.
Facebook have fixed the vulnerability and have informed police, and they have reset all the tokens from 50 million accounts that were affected, and as a precautionary measure they are resetting a further 40m accounts.
All this means is 90 million people will simply have to re log-in.
Facebook confirm they have no idea what information the attackers gained or who they were, and said that once more is known people will get an update.
Facebook users do not have to change the password and have apologised to all those affected by the security breach and said they take people’s security very seriously to make sure this does not happen again.