Additionally, Facebook will turn off the "View As" feature until they can conduct a thorough security review. And we invalidated the access tokens for the accounts of the 50 million people who were affected - causing them to be logged out. It has turned off the "View As" feature that the attackers exploited while it investigates.
Facebook says that they've already fixed the vulnerability and informed law enforcement. Further, the company says it is resetting tokens for an additional 50 million accounts as a precautionary measure.
"This is a really serious security issue and we're taking it really seriously", Facebook Mark Zuckerberg told reporters during a Friday media call.
These access tokens are like digital keys that keep people logged in to Facebook so they don't need to re-enter their password every time they use Facebook.
In total, approximately 90 million people will need to log in again on the site or on any site-related apps. From there, they'll be able to see a statement from Facebook explaining what happened. They will be notified why at the top of their News Feed.
Since we've only just started our investigation, we have yet to determine whether these accounts were misused or any information accessed. They plan to reset another 40 million accounts' access tokens too.
I want to update you on an important security issue we've identified.
No credit card information or passwords have been taken.
Facebook's Sheryl Sandberg also attended a meeting in front of the Senate Intelligence Committee last month discussing how the company was working to prevent future election interference similar to what happened during the 2016 election. Confidence in the giant social network used by more than two billion people around the world has been shaken by the troubling revelations.