Facebook has announced a massive security issue affecting at least 50 million of its 2.23 billion active users. While the company is still investigating the issue, it already has taken steps to stop the exploit and protect users.

Facebook says its engineering team discovered a security threat that could allow a hacker “to steal Facebook access tokens which they could then use to take over people’s accounts.”

What’s an access token?

An access token is the thing your browser uses to keep you logged in to your Facebook account after signing in once.

Was any of my personal information stolen?

Facebook said it has “yet to determine whether these accounts were misused or any information accessed.” But if hackers had unfettered access to user accounts, it’s safe to say at least some data was compromised.



Whilst there’s no indication that the attackers were able to steal passwords directly, but changing it will ensure that any access they may have had to your account will be blocked.

How do I do that?

  1. Click the menu icon in the top-right corner of any Facebook page and select Settings.
  2. Click Security and Login.
  3. Click Edit next to Change Password.
  4. Click Save Changes.

Should I unlink apps that use Facebook login?

It’s not a bad idea, especially if there are apps that you haven’t used in a while. At the very least you should log out of any Facebook Login apps to reset the access token.

This was posted in PCWorld


Want to double check on your PC? Check it in for a checkup