A few days ago, the accounts of approximately 50 Facebook million users were exposed, in one of the platform¡¯s worst security breaches.
Hackers supposedly gained access to login keys that would let them take control of accounts. Those details are now being sold online.
The login keys stolen by the hackers are what let you stay logged in to Facebook apps on your smartphone even when you close them. With that, the attackers could potentially take control of user accounts. But like what happens with many hacks on this scale, it was more profitable for the hackers to sell the data to others on the Dark Web.
According to the Independent, dozens of listings have begun appearing on darknet sites, offering up offering up Facebook account login details for as little as $3. For those of you that don¡¯t know, the dark web is the seedy underbelly of the Internet you know. Inaccessible except with specific software, it¡¯s a thriving ecosystem for everything illegal, and it¡¯s exactly where hackers would hope to easily find buyers for the data stolen from Facebook. The stolen details could be used to facilitate everything from committing identity theft, to credit card fraud, to blackmail, and even to create authentic-looking social media bots.
Also Read:?Facebook Could Face Rs 11,866 Crore Fine For Failing To Protect Your Data In Last Week's Hack
Listings have reportedly appeared on popular dark web marketplaces, including Dream Market. According to the user ratings displayed next to each of these vendors, they¡¯re trustworthy, which likely means their product for sale is authentic. That product being the keys to your Facebook profile.?
Being on the dark web, these transaction are solely carried out through Bitcoin or other cryptocurrency, but they¡¯re priced anywhere between Rs 220 to Rs 880. If that¡¯s the value of individual account logins, the entire haul of 50 million accounts could net the hackers anywhere between Rs 1,100 crore to Rs 4,400 crore.
So far, it seems Facebook still has no idea who was behind the attack, and are yet uncertain as to the extent. After all, with the access tokens they stole, hackers aren¡¯t just limited to taking over your Facebook account. They could also use them to log into any third party app you¡¯ve signed up for with Facebook, like Tinder, Spotify, Instagram.
So yeah, whether or not you think you¡¯ve been hacked, now¡¯s the time to change your Facebook password and recent any apps you use it to sign in to.