Now playing
03:11
Marc Benioff: Facebook is the new cigarettes
An Uber SUV waits for a client in Manhattan a day after it was announced that Uber co-founder Travis Kalanick will take a leave of absence as chief executive on June 14, 2017 in New York City. The move came after former attorney general Eric H. Holder Jr. and his law firm, Covington & Burling, released 13 pages of recommendations compiled as part of an investigation of sexual harassment at the ride-hailing car service.
An Uber SUV waits for a client in Manhattan a day after it was announced that Uber co-founder Travis Kalanick will take a leave of absence as chief executive on June 14, 2017 in New York City. The move came after former attorney general Eric H. Holder Jr. and his law firm, Covington & Burling, released 13 pages of recommendations compiled as part of an investigation of sexual harassment at the ride-hailing car service.
PHOTO: Spencer Platt/Getty Images
Now playing
03:39
Uber CEO: Let's change the system on gig work
Now playing
01:24
Salesforce CEO: People should be fined for not wearing a mask
PHOTO: Photo Illustration: Kena Betancur/Getty Images
Now playing
04:50
Zoom's founder says he 'let down' customers. Here's why
PHOTO: CNN
Now playing
03:50
Microsoft President: There is a privacy crisis
PHOTO: CNN
Now playing
01:07
Facebook COO calls for government regulation
SAN FRANCISCO, CALIFORNIA - OCTOBER 03: Salesforce Chairman & Co-CEO Marc Benioff speaks onstage during TechCrunch Disrupt San Francisco 2019 at Moscone Convention Center on October 03, 2019 in San Francisco, California. (Photo by Steve Jennings/Getty Images for TechCrunch)
SAN FRANCISCO, CALIFORNIA - OCTOBER 03: Salesforce Chairman & Co-CEO Marc Benioff speaks onstage during TechCrunch Disrupt San Francisco 2019 at Moscone Convention Center on October 03, 2019 in San Francisco, California. (Photo by Steve Jennings/Getty Images for TechCrunch)
PHOTO: Steve Jennings/Getty Images for TechCrunch
Now playing
01:49
Marc Benioff: It's time to break up Facebook
Google CEO Sundar Pichai greets attendees during an event at the Mayes County Google Data Center in Pryor, Oklahoma, June 13, 2019. Nick Oxford for CNN
Google CEO Sundar Pichai greets attendees during an event at the Mayes County Google Data Center in Pryor, Oklahoma, June 13, 2019. Nick Oxford for CNN
PHOTO: Nick Oxford for CNN
Now playing
04:12
Google CEO reacts to growing calls to break up big tech (2019)
collision ev williams trump twitter orig_00002025.jpg
collision ev williams trump twitter orig_00002025.jpg
Now playing
02:26
Twitter co-founder calls Trump a 'master of the platform'
Now playing
02:37
Steve Ballmer: Where will we get infrastructure funding?
RANCHO PALOS VERDES, CA - FEBRUARY 07:  Executive Editor, Recode Kara Swisher attends The 2017 MAKERS Conference Day 2 at Terranea Resort on February 7, 2017 in Rancho Palos Verdes, California.  (Photo by Emma McIntyre/Getty Images for AOL)
RANCHO PALOS VERDES, CA - FEBRUARY 07: Executive Editor, Recode Kara Swisher attends The 2017 MAKERS Conference Day 2 at Terranea Resort on February 7, 2017 in Rancho Palos Verdes, California. (Photo by Emma McIntyre/Getty Images for AOL)
PHOTO: Emma McIntyre/Getty Images North America/Getty Images for AOL
Now playing
03:14
Kara Swisher: Tech companies need ethics officers with power
PHOTO: CNN
Now playing
03:01
Huawei CEO: US scare tactics will frighten off investors
PHOTO: Moss Cohen
Now playing
01:34
Winklevoss twins call crypto the 'ultimate social network'
Now playing
03:22
IBM CEO: Need to hire people for skills, not just degrees
SAN FRANCISCO, CA - JANUARY 31:  A Lyft driver places the Amp on his dashboard on January 31, 2017 in San Francisco, California.  (Photo by Kelly Sullivan/Getty Images for Lyft)
SAN FRANCISCO, CA - JANUARY 31: A Lyft driver places the Amp on his dashboard on January 31, 2017 in San Francisco, California. (Photo by Kelly Sullivan/Getty Images for Lyft)
PHOTO: Kelly Sullivan/Getty Images for Lyft
Now playing
03:32
Self-driving cars are coming. But Lyft co-founder says he'll need more drivers
(CNN Business) —  

A massive Facebook breach may also have affected users of hundreds of other websites and apps. But three days after the public disclosure of the breach, it’s not clear that those companies know what, if anything, might have happened to their users.

A spokesperson for the dating app Tinder said Monday that Facebook has shared only “limited information” and called on Facebook to be “transparent” about which of Tinder’s users may have been affected.

In a statement Monday, Facebook said it was preparing more guidance for app developers.

A wide range of digital services, including big names like Tinder, Spotify and Airbnb, allow users to log in to accounts on their platforms using their Facebook credentials, a process known as Single Sign-On, or SSO.

The breach, which Facebook has said affected 50 million of its users, would have allowed hackers to log in as those people on Facebook and on apps and websites that allow SSO though Facebook.

CNN reached out to almost a dozen companies that offer the Facebook login capability. None of them would say if they had identified any overlap between their users who log in using Facebook and the 50 million Facebook users whose data was exposed.

Identifying that overlap could allow the companies to examine if affected Facebook users’ data was also compromised on their platforms.

Jason Polakis, an assistant professor of computer science at the University of Illinois at Chicago, said that single sign-on is a useful feature, but also a very risky one.

“The importance here is that since Facebook has become the most popular identity provider out there it’s not easy to evaluate how many accounts of yours hackers might have accessed,” said Polakis, who has studied the feature extensively.

In a statement to CNN on Monday, Tinder said it has done “a full forensic investigation” since Facebook’s “limited” disclosure and has found “no evidence to suggest accounts have been accessed.”

Tinder continued, “We will continue to investigate and be vigilant — as we always are — and if Facebook would be transparent and share the affected user lists, it would be very helpful in our investigation.”

A Tinder spokesperson pointed out that most of its new users sign up to the service without using a Facebook login.

Pinterest, another company that allows its users to log in using Facebook, told CNN that it was working with Facebook to determine if any Pinterest users were impacted.

Facebook said in a statement Monday that developers of apps that use Facebook login “can detect the forced logout actions we took on Friday and protect people using their apps.”

“We are preparing additional recommendations for all developers responding to this incident and to protect people going forward,” a Facebook spokesperson added.

Airbnb and GoFundMe, two major services that allow users to log in through Facebook, did not respond to CNN’s requests for comment.

Spotify told CNN it takes the security of its users’ privacy very seriously.

The company added that “as a precaution, concerned users can update their Spotify password, or if the account was created through Facebook, the Facebook login via their instructions.”

The precautionary advisory comes after Facebook told users that they didn’t need to change their passwords because the hackers did not have access to passwords.

No company that CNN reached out to explained what practical steps they were taking to ensure their users had not been affected by the attack on Facebook.

Headspace, a meditation and wellness app, told CNN, “We’ve investigated the matter and found no abnormalities, though we have initiated precautionary measures to protect our members and are continuing to monitor.”

The company did not detail what its investigation entailed nor what precautionary measures it took.

Other apps allow their users to log in through Facebook but have additional security measures on top of that login.

A spokesperson for Ancestry told CNN, “While Ancestry does support Facebook login for some functions, we always require an additional Ancestry username and password to access sensitive account functions such as downloading your DNA data, changing your password, changing your email address or accessing payment information. Our customers’ exposure is minimized by these additional controls.”

TransferWise, a money wire service that allows users to log in through Facebook, said its investigation was underway but that it had “no indication” that its customers had been affected.

The company said that in order for any money to be transferred users are asked to verify their identity through a second step that does not involve Facebook.