Facebook’s single sign-on feature, dubbed Facebook Social Login, could have been used to log into victims’ accounts at third-party services and mobile apps. Facebook says it does not enforce its developer guidelines, so there are an unknown number of services for which SSO does not work. Password managers are a good thing, but SSO is really about authorization, not authorization, experts say. Security expert Troy Hunt says the Facebook breach is a warning sign for anyone who might use consumer SSO at all costs.”]
Source: https://www.cuinfosecurity.com/blogs/experts-view-avoid-social-networks-single-sign-on-p-2670