A new written report might make you think twice before installing that next Chrome denotation . The individual Facebook subject matter of at least 81,000 mass have reportedly been stolen , credibly due to an effort in a internet browser extension , and compromised account are now apparently up for sale for just $ 0.10 apiece .
The BBCreportsthat a fishy group had turn over out to them essay to betray Facebook data on what the hackers exact , doubtfully , is 120 million account . This hack apparently has nothing to do with the most recent hack of Facebook information that was wide publicizedin September . The hacker , who may be Russian since they contact out to the BBC Russian Service , seem to have the Facebook messages of at least 81,000 people , mostly of Russians and Ukrainians , but also from people in the U.S. , UK , and Brazil , according to the BBC .
“ Based on our probe so far , we believe this information was obtained through malicious web browser reference installed off of Facebook , ” Guy Rosen , VP of Product Management , tell Gizmodo over email .
“ We have contacted web browser Lord to see that known malicious extensions are no longer uncommitted to download in their stores and to share information that could help identify additional file name extension that may be related , ” Rosen said . “ We have also contacted jurisprudence enforcement and have worked with local authorisation to remove the website that displayed information from Facebook accounts . ”
“ We further masses to check the web web browser extensions they ’ve establish and remove any that they do n’t fully confide . As we continue to investigate , we will take activeness to secure citizenry ’s accounts as appropriate . ”
security department firm Digital Shadows helped BBC analyze the datum and came to the conclusion that the assaulter used a web internet browser feat . But Rick Holland , Digital Shadows ’ master entropy certificate officer and Vice President of strategy , told Gizmodo that they still do n’t know what internet browser extension or extensions might be responsible .
“ Browsers like Chrome can be very safe , but web internet browser extensions can introduce serious disruption in their armor . The addition of internet browser extensions increase what is otherwise a modest attack aerofoil . Malicious extensions can be used to intercept and manipulate the data pass through the web browser , ” Holland said .
“ Sadly , malicious extensions do make it into official browser app memory like the Chrome Web Store , ” he continued , “ and the direction of web browser app wing is a challenge for cybersecurity teams which make water subject that much high-risk . ”
Why the huge difference between the hacker ’ exact 120 million accounts and perhaps just 81,000 accounts , according to Digital Shadows ? Much of the information from the 120 million accounts may have just been scraped from publicly available Facebook account from the great unwashed who have n’t ready their concealment preferences to anything very restrictive . But the steal individual substance sure look legit . The BBC contacted five Russian Facebook users and confirmed that the Facebook messages being offered for sale were existent .
Many of the messages are relatively benignant and include unsubdivided chats about going on vacation and attending concerts . But as you ’d expect , there are also more sensitive discussions , include “ intimate correspondence between two devotee , ” as the BBC describes it .
So , this one does n’t appear to be Facebook ’s flaw , but it ’s still not great news for thescandal - plaguedsocial web . Between the September data break — which directly bear on some29 million users — the ongoing rash of bastard newsworthiness and failed moderation efforts , and Facebook’scomplicity in racial extermination , it ’s no admiration that more and more hoi polloi aredeleting Facebookfrom their phone . But if you have any individual message on the service , you may want to think deleting those as well . They could terminate up on some website being offered for penny — get into they have n’t been published already .
[ BBC ]
Update , 12:45pm : Added comment from Facebook ’s Guy Rosen .
Daily Newsletter
Get the best tech , science , and cultivation news in your inbox daily .
News from the futurity , delivered to your nowadays .
You May Also Like
