Security of Facebook accounts

29 September 2018
Tags: statement

The Office of the Australian Information Commissioner (OAIC) has been advised by Facebook of an incident involving the security of Facebook accounts.

The OAIC is making inquiries with Facebook about the facts, including the number of Australians who may have been impacted by the incident. The OAIC is also in contact with the Australian Cyber Security Centre about the incident.

Facebook has issued a statement on its website which provides information for individuals whose accounts may have been affected. Facebook advises that it is in the process of resetting access keys for around 90 million accounts, and that affected users will be automatically logged out and asked to log back in to their accounts.

The Notifiable Data Breaches (NDB) scheme, which commenced on 22 February 2018, requires organisations to notify affected individuals whose personal information is involved in an eligible data breach.

The OAIC has published a number of resources for those affected by a data breach, and advice on what action they can take, including tips on protecting yourself from harm or identity fraud.

If anyone has concerns about this incident they can, in the first instance, contact Facebook via the contact options available within the Facebook Settings for their account, or by contacting the Facebook Help Centre.