Facebook, the world’s most popular social network, suffered another major data breach today courtesy of a user who decided to publish details on over 533 million accounts on a low-level hacking forum. According to coverage from Business Insider, the leaked data includes phone numbers, full names, locations, email addresses, and other information that could be used for nefarious purposes. The leak is said to stem from a vulnerability that Facebook patched back in 2019.
All 533,000,000 Facebook records were just leaked for free.— Alon Gal (Under the Breach) (@UnderTheBreach) April 3, 2021
This means that if you have a Facebook account, it is extremely likely the phone number used for the account was leaked.
I have yet to see Facebook acknowledging this absolute negligence of your data. https://t.co/ysGCPZm5U3 pic.twitter.com/nM0Fu4GDY8
While a couple of years old, the leaked data could provide valuable information to cybercriminals who use people’s personal information to impersonate them or scam them into handing over login credentials, according to Alon Gal, CTO of cybercrime intelligence firm Hudson Rock, who first discovered the entire trough of leaked data online on Saturday.
“A database of that size containing the private information such as phone numbers of a lot of Facebook’s users would certainly lead to bad actors taking advantage of the data to perform social engineering attacks [or] hacking attempts,” Gal told Insider.
Source: Business Insider, Alon Gal