Facebook said that the outage was the result of a configuration error on its backbone routers. According to an article on Facebook Engineering:
Our engineering teams have learned that configuration changes on the backbone routers that coordinate network traffic between our data centers caused issues that interrupted this communication. This disruption to network traffic had a cascading effect on the way our data centers communicate, bringing our services to a halt.
Our services are now back online and we’re actively working to fully return them to regular operations. We want to make clear at this time we believe the root cause of this outage was a faulty configuration change. We also have no evidence that user data was compromised as a result of this downtime.
A post on Krebs on Security offered a bit more information:
At approximately 11:39 a.m. ET today (15:39 UTC), someone at Facebook caused an update to be made to the company’s Border Gateway Protocol (BGP) records. BGP is a mechanism by which Internet service providers of the world share information about which providers are responsible for routing Internet traffic to which specific groups of Internet addresses.
In simpler terms, sometime this morning Facebook took away the map telling the world’s computers how to find its various online properties. As a result, when one types Facebook.com into a web browser, the browser has no idea where to find Facebook.com, and so returns an error page.
Today’s businesses rely on a complex web of interconnected relationships, which can extend your risk surface across the businesses you partner with and expose your business to serious financial and reputational risk.
According to a recent report by the Ponemon Institute for third-party security provider SecureLink, 51% of organizations have experienced a data breach caused by a third party that led to the misuse of sensitive or confidential information.
From Facebook to SolarWinds, critical businesses have experienced incidents impacting their ability to deliver products and services to customers. Some are the result of user error; others are caused by malicious activity.
To proactively mitigate third-party risk, organizations need automated tools that continuously measure and monitor the security performance of business partners. BitSight for Third-Party Risk Management exposes cyber risk within your supply chain to achieve significant and measurable cyber risk reduction.
To serve your customers and realize efficiencies, your organization may work with dozens if not hundreds of third parties including partners, vendors, cloud service providers, and subcontractors.
But digital ties with these providers...
Facebook and the apps under its umbrella, including Instagram and WhatsApp, were inaccessible for hours on Monday. The outage hamstrung the communications of billions of people, businesses, and other organizations.
Though Facebook is...