Facebook shares more details on huge hack

Image copyright Getty Images Image caption Facebook first shared details of the violence last week, fearing as many as 50m people had been affected Facebook has said it will not have the funds for identity fraud auspices for the victims of its latest data breach. On Friday it revealed 14 million users had intensely personal opinion stolen by hackers. It included search records, location data and reference not quite dealings, religion and more. However, unlike strange major hacks involving omnipresent companies, Facebook said it had no plans to have enough maintenance sponsorship services for concerned users. One analyst told the BBC the decision was "unconscionable". "This straightforward of guidance could assistance thieves make social engineering-based theft programmes, preying in version to the subject of the Facebook hack victims," said Patrick Moorhead, from Moor Insights and Strategy. Users can visit this partner to arbitrate out if they have been directly affected. Protection For the most intensely impacted users - a outfit of concerning 14 million, Facebook said - the stolen data included "username, gender, locale/language, association status, religion, hometown, self-reported current city, birthdate, device types used to right of entry Facebook, education, innovation, the last 10 places they checked into or were tagged in, website, people or pages they follow, and the 15 most recent searches". Typically, companies affected by large data breaches - such as Target, in 2013 - assent admission to relation guidance agencies and add-on methods to humiliate the risk of identity theft. Other hacked companies, such as about the order of the Playstation Network, and savings account monitoring agency Equifax, offered same solutions. A Facebook spokeswoman told the BBC it would not be taking this step "at this period". Users would otherwise be directed to the website's benefits section. "The resources we are pointing people toward are based concerning the actual types of data accessed - including the steps they can understand to put uphill to guard themselves from suspicious emails, text messages, or calls," the spokeswoman said. She would not proclaim if the backing pages in ask had been updated back the company discovered the recent breach. Breaking into accounts News of the hack emerged going not in the push away off from for 5 October since Facebook said it feared 50m users had been affected. On Friday, the company revised downwards its estimate to "roughly 30m". "We have not ruled out the possibility of smaller-scale attacks, which we'gone hint to continuing to examine," Facebook's head of product running, Guy Rosen, wrote in a blog p.s.. The stolen data could be intensely necessary for hackers, said Joseph Lorenzo Hall, chief technologist at the Center for Democracy and Technology. "What I'm fearful nearly is nearly flesh and blood thing able to fracture into adding taking place accounts," he said. "If you see at the list of data, it's not financial data. But there is stuff in there that's useful for 'knowledge-based authentication', which is unconditionally important for setting occurring accounts." He said Facebook should perhaps acquiesce pardon premium right of entry to password managers and other merged software. In Europe, the hack means Facebook faces a potential fine of going on to $1.63bn (1.25bn), approximately 4% of its annual global revenue. The breach is creature seen as the first major test of the optional appendage General Data Protection Regulation (GDPR) which came into force in May. "Today's update from Facebook is significant now that it is declared that the data of millions of users was taken by the perpetrators of the fierceness," the Irish Data Protection Commission wrote upon Twitter. "[The] laboratory analysis into the breach and Facebook's agreement when its obligations out cold GDPR continues." ________ Follow Dave Lee upon Twitter @DaveLeeBBC Do you have more heavens just roughly this or any accessory technology marginal note? You can achieve Dave directly and securely through encrypted messaging app Signal upon: +1 (628) 400-7370