“The perpetrator’s ultimate aim was to steal what are known as “OAuth bearer tokens.” Essentially, these tokens prove the Facebook user is the rightful owner of an account and denote what they have access to. As Shadwell describes them: “OAuth tokens are like car keys, if you’re holding them you can use them, there’s no discrimination of the holder.” And in the context of this attack, those keys unlocked not just Facebook accounts, but any site that affected users accessed with a Facebook login. That might include Instagram or news websites.”
“In the incident disclosed Friday, the Menlo Park, California-based company said it started investigating suspicious activity on Sept. 16. A few days before that, Zuckerberg wrote that the company was better prepared for attacks by foreign actors spreading division and misinformation ahead of elections in the U.S., France and other countries. The prospect of hackers taking control of almost 50 million Facebook accounts may undermine those assertions.”
The social-media network said in a statement Friday that it has fixed the breach, which allowed hackers to take over people’s accounts.
“Other socialist protesters familiar with the process for discovering home addresses of targets strongly infer that Justice Department LexisNexis accounts are used by a socialist Justice Department employee to identify home address of targets.”
“The city of Chicago has been conducting food truck surveillance since 2012. As an illustration, it equips each food truck with a device that reports its location to authorities every five minutes.”
“The tech industry and consumer groups are gearing up for a fight as lawmakers begin considering whether to draft a national privacy law.”
“WASHINGTON—Google Inc. told lawmakers it continues to allow other companies to scan and share data from Gmail accounts, responding to questions raised on Capitol Hill about privacy and potential misuse of the information contained in users’ emails.”