2. Seeking answers to Facebook hack
Facebook, third-party apps and regulators are scrambling to figure out key details of a breach that gave hackers access to 50 million accounts, Axios' David McCabe reports.
The big picture: Observers widely noted that past security failures on this scale have always ended up affecting much larger numbers of users than originally announced. Two major online services that allow users to sign in with Facebook reported no evidence of problems, but investigations are just beginning.
What happened: Hackers stole "access tokens" that gave them the ability to control 50 million accounts. It's not clear whether they used them to get into Facebook or any of the thousands of other services that take Facebook credentials.
What they’re saying:
- A spokesperson for Tinder said the dating app “has conducted a full forensic investigation and has no evidence to suggest accounts have been accessed based on the limited information Facebook has provided.”
- “Spotify has not experienced a security breach,” said a spokesperson for the music streaming service, which lets you log in with a Facebook account.
- Airbnb, another major company that lets users log in with Facebook credentials, did not comment on the potential impact of the breach.
- Pinterest told CNN it examining the impact on its platform.
Yes, but: Tinder's spokesperson said that "if Facebook would share the affected user lists, it would be very helpful in our investigation."
Multiple congressional committees want answers about the breach, with both the House Energy and Commerce and the Senate Commerce committees seeking briefings from Facebook, per aides.
What’s next: Facebook has promised to provide regulators and the public with more details. “As we work to confirm the location of those potentially affected, we plan to release further info soon,” Facebook said in a tweet.
Go deeper: David has more here.