Data retrieved from Facebook between June 2017 and April 2018 has been hacking April 3, 2021.
- Account creation data
- Date of birth
- Email address
- Facebook ID
- Facebook biography
- Full name
- Wedding details
- Phone number
- Past location
- Relationship details
Hacked users may not have had all of these data points stolen, and it's currently difficult to pinpoint exactly what information and from whom the data came from scratched.
The leak includes user information from 106 countries with 32 million records belonging to Facebook users in the US, 11 million records from the UK and more to across Europe:
The leak was discovered by Alon Gal, director Hudson Rock technique:
Alon told Business Insider :
He also stated that the leak data is a breach of trust and should be treated accordingly.
Facebook calls The Personal Information Leak 'Old Ne ws '
Liz Bourgeois , Facebook's Director of Strategic Response Communications, atweeted on the day the leak was discovered, calling it "old news ".
However, personal information like email addresses, full names, phone numbers, and locations don't change regularly, so this latest leak is always valuable to cybercriminals who might use this information fraudulently.
While not all of the information is relevant today, it is fair to assume that much will be, leaving users vulnerable to phishing and smishing attacks; whereby hackers or cybercriminals try to get their victims to click a link or reply to a text message.
Ulrich Kelber, a German federal data regulator tweeted a photo of an attempt:
His comment next to the image is translated by:
Ivan Righi, analyst Cyber Threat Intelligence at Digital Shadows, a stated that personal information would originally have been available at a high price, which limits the number of hackers who choose to buy informationot.
He clarified that the information was probably resold several times until the asking price got so low that it was publicly released, which is typical behavior of hackers.
He also said that:
It is possible that this information can be used to access accounts that require two-factor authentication, such as bank accounts.
At the very least, victims of Facebook can expect an increase in nuisance calls.
Related: 7 Urgent Steps To Take When Your Facebook Account Is Hacked
Is it of a GDPR B to achieve?
The office of the coInformation Commissioner says the relevant regulator must be notified of any significant data breach or leak within 72 hours.
If Facebook breaks EU rules General Data Protection Regulation (GDPR) legislation is currently under discussion.
The original leak occurred before the GDPR was implemented; However, as the social platform claims to have closed the loophole in 2019, a year after the GDPR was activated, one wonders if they should have gone through the notification process.
The Irish Data Protection Commission said yesterday that investigations were underway to verify whether any rules had been broken.
Can you tell if your information has been deleted?
You can find out if your email address ou your phone number has been Have I Been Pwned? Troy Hunt, creator of the tool and regional manager and MVP for Microsoft said the tool can be used to find out if you are the victim of the leak:
Facebook talks Exit
Director of Product Management at Facebook, Mike Clark, posted an article yesterday on the violation.
The article reveals that the information was retrieved using a Facebook contacts import feature designed to help users find and connect with their friends.
When the social platform became aware of how hackers usewere reading this feature, they implemented updates.
The article advises users to update the ' How people find and contact you , run privacy checks regularly and enable two-factor authentication.
Unfortunately, hacks aren't new, and as the internet grows, so will the technology that takes advantage of all available data.
Twitter users were hacked on July 15, 2020, and WordPress also has its problems . Unfortunately, protection against these events is often reactive as hackers find new vulnerabilities to exploit.
Autres articles covering the story:
Hot for safety