The Facebook company confirmed on Sept 28 that some hackers relied on a security bug of Facebook’s system, and improperly collected some users’ access tokens, so that around 50 million users are faced with threat in information security.
According to the security update released on Facebook’s website, “access tokens are the equivalent of digital keys that keep people logged in to Facebook so they don’t need to re-enter their password every time they use the app.”
The update article also pointed out that the security vulnerability was found on the “View As” of the app; Now the Facebook has fixed the vulnerability and temporarily turned off the “View As”.
Results of investigation show that the bug has existed since July last year, but it is still unconfirmed how long the hackers have taken advantage of it.
The Facebook company noted that the Federal Bureau of Investigation (FBI) has taken part in the further investigation, but the identity of the hackers has not been found, and what data have been leaked remains unknown.
In March this year, a number of media agencies reported that a company named Cambridge Analytica collected 50 million Facebook users’ private data by providing tests on people’s characters and psychological condition through the Facebook app. Later, the number of affected users rose to 87 million, said an article of Mike Schroepfer, chief technology officer (CTO) of Facebook.
In addition to the figures officially released by Facebook, the company also admitted that private information of most of its two billion users may have been collected without their clear permission.