Facebook says it found no evidence of hackers accessing third-party apps with its “Login with Facebook” feature. Hackers exploited a chain of vulnerabilities in its code to steal 50 million accounts tokens. Facebook fixed the issue on Thursday night and forcefully logged 90 million users out of their accounts as a precaution. Uber has precautionarily expired all active Facebook-based login sessions temporarily after the data breach, while the company is still investigating the breach at its end. The social media giant has yet to disclose the attackers responsible for the massive attack, their origins, and the data they may have stolen.
Source: https://thehackernews.com/2018/10/facebook-token-hacking.html