![]() ![]() ![]() According to Law360, Alsup said that he’s sympathetic to users’ concerns and that’s worth “real money”, as opposed to “some cosmetic injunctive relief.”įollow on Twitter for the latest computer security news. The court wants those details: Judge William Alsup told Facebook in January that he was willing to allow “bone-crushing discovery” in the case to uncover how much user data was stolen. It hasn’t broken down the numbers by country. All that it’s said is that the breach affected a “broad” spectrum of users. It’s also given out scant details about the breach since initially disclosing the attack. What’s even worse: the plaintiffs allege that Facebook could and did protect its own employees from the fallout, leaving everybody else as sitting ducks.įacebook knew about the access token vulnerability and failed to fix it for years, despite that knowledge.Įven more egregiously, Facebook took steps to protect its own employees from the security risk, but not the vast majority of its users.įacebook hadn’t responded to requests for comment as of Friday afternoon. On Thursday, in a heavily redacted section of the filing in the US District Court for Northern California, the plaintiffs said that Facebook knew about, and failed to fix, the vulnerability for years. Facebook knew about it and “failed to fix it for years” The attackers could also see posts and lists of friends and groups of about 400,000 users. But there are benefits to data collection as well. That’s exactly what attackers did: they took the profile details belonging to some 14 million users, including birth dates, employers, education history, religious preference, types of devices used, pages followed and recent searches and location check-ins.Īccording to Reuters, another 15 million users had only their name and contact details exposed. What does this do to safety on the platform Facebook rightly faces endless criticism for all the data it collects. If user Y was logged into Facebook at the time, even if they weren’t actually active on the site, the crooks could recover the Facebook access token for user Y, potentially giving them access to lots of data about that user. J Facebook Internet Tracking Settlement Website Is Live The official website for the Facebook data tracking settlement is live and can be found here: To submit a claim online, head to this page and enter your notice ID and confirmation code to begin filing your claim. 8 In October 2019, Facebook agreed to pay a £500,000 fine to the UK Information Commissioners Office for exposing the data of its users to a 'serious risk of harm'. But crooks figured out to how to exploit a bug (actually, a combination of three different bugs) so that when they logged in as user X and did View As user Y, they essentially became user Y. In July 2019, it was announced that Facebook was to be fined 5 billion by the Federal Trade Commission due to its privacy violations. This is supposed to be a security feature that helps you check whether you’re oversharing information you meant to keep private. Russian hackers accessed Wolf’s emails as a result of the attack.As Naked Security’s Paul Ducklin explained at the time, the View As feature lets you preview your profile as other people would see it. Former president Donald Trump’s acting homeland security secretary, Chad Wolf, discusses the SolarWinds cyberattack at a Heritage Foundation event on April 12 at 1 p.m.Eric Goldstein, CISA’s executive assistant director for cybersecurity, discusses the Biden administration’s cybersecurity priorities at an American Transaction Processors Coalition event on Wednesday at 3 p.m.Clarke (D-N.Y.), who chairs the House Homeland Security Committee’s cybersecurity subcommittee, speaks at an event hosted by the Cybersecurity Coalition on April 7 at 2:30 p.m. Tim Maurer, a senior cybersecurity aide to Homeland Security Secretary Alejandro Mayorkas former CISA director Chris Krebs former CISA attorney-adviser Kemba Walden and former National Security Council cybersecurity coordinator Michael Daniel speak at a Center for Strategic and International Studies event on DHS’ cyber mission on Wednesday at 11 a.m. The breach was first highlighted by Alon Gal, the co-founder and chief technical officer of cybersecurity firm Hudson Rock, who found the cache of leaked data online on Saturday (April 3).The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) hosts a webinar on the role women play in the cybersecurity community today at 1 p.m.Former State Department cyber coordinator Chris Painter speaks at an event hosted by the Business Council on International Understanding today at 10 a.m. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |