IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Facebook blasts claims 600,000 accounts compromised a day

The social network says 600,000 accounts are not hacked every day, after figures cause confusion.

Facebook

Facebook has rebuffed claims 600,000 accounts on the social networking site are accessed every day by unauthorised parties.

Sophos senior technology consultant Graham Cluley extrapolated official figures from Facebook that said ".06 per cent of over one billion logins per day are compromised."

"Put another way, that's more than 600,000 per day - or, if you really like to make your mind melt, one every 140 milliseconds," Cluley said in a blog post.

While Facebook does block (approximately) 600,000 log-ins per day, it is not that these Facebook accounts are compromised on Facebook.

However, Facebook denied the claims, saying 600,000 login attempts were blocked every day. Whenever Facebook deems an attempt to login as dubious, it asks the user to go through further security processes. If the user fails to pass these, access is blocked.

"While Facebook does block (approximately) 600,000 logins per day, it is not that these Facebook accounts are compromised on Facebook, and certainly not that they're 'hacked' as some have written," a Facebook spokesperson said.

"There may be compromised accounts that appear on Facebook, but more often than not they are compromised off of Facebook - they use the same password for e-mail as Facebook, they get phished, etc. Compromised in this sense refers to logins where we are not absolutely confident that the account's true owner is accessing the account and we either preemptively or retroactively block access."

Security updates

The revelation came on the same day Facebook launched a host of additions designed to improve security on the site.

The Trusted Friends feature allows those locked out of their email and Facebook accounts to get back onto the social network. In such a scenario, selected contacts are sent a code that can be handed to the victim to let them back into their Facebook account.

App Passwords means users can add passwords to certain third-party applications.

HTTPS can now also be turned on permanently as Facebook looks to up its security game.

Earlier this year, the social networking giant opened up a bug bounty hunter scheme.

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

Powering through to innovation

IT agility drive digital transformation

Free Download

Recommended

Meta hit with €17 million fine over multiple GDPR breaches
data protection

Meta hit with €17 million fine over multiple GDPR breaches

16 Mar 2022
Meta says Apple's iOS privacy changes will cost it $10 billion in 2022
privacy

Meta says Apple's iOS privacy changes will cost it $10 billion in 2022

3 Feb 2022
Google, Facebook fined €210 million for making it difficult for users to reject cookies
Policy & legislation

Google, Facebook fined €210 million for making it difficult for users to reject cookies

6 Jan 2022
The IT Pro Products of the Year 2021: The year’s best hardware and software
Hardware

The IT Pro Products of the Year 2021: The year’s best hardware and software

31 Dec 2021

Most Popular

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks
Security

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks

27 Jun 2022
Open source giant Red Hat joins HPE GreenLake ecosystem
automation

Open source giant Red Hat joins HPE GreenLake ecosystem

28 Jun 2022
Carnival hit with $5 million fine over cyber security violations
cyber security

Carnival hit with $5 million fine over cyber security violations

27 Jun 2022