قالب وردپرس درنا توس
Home / Tips and Tricks / Personal Data Of 533 Million Facebook Users Stolen By Hackers – Review Geek

Personal Data Of 533 Million Facebook Users Stolen By Hackers – Review Geek



A Facebook privacy page with a magnifying glass over the word privacy.
Pixinoo / Shutterstock

If you̵

7;re on Facebook (and who isn’t?), Consider locking all your accounts. A security researcher discovered the personal information of 533 million Facebook users who had been leaked online in a hacker forum. The data includes phone numbers, names, dates of birth, emails and more.

The data in question first leaked in January, but at the time hackers had to pay for it through a Telegram bot. That somewhat limited the spread between the cost and the method of retrieving it. But over the weekend, security researcher Alon Gal discovered the data posted on a hacker forum for free.

The breach contains information on users in 106 countries, including 32 million US users and 11 million UK users. Troy Hunt, van haveibeenpwned, already has a copy of the data and in its analysis few records (about 0.5%) contain email addresses. But many more include phone numbers, dates of birth and other personally identifiable information. Everything you need to carry out a sim swapping attack or take over an account.

Hunt, for his part, is considering adding a new field to it haveibeenpwned.com for phone numbers. Currently you can only use your data against e-mail addresses for breaches, but in this case it is not very useful. But adding a phone number field comes with risks, so Hunt is still deciding as of this release.

In a statement to Bleeping Computer, Facebook stated that hackers stole the data using a vulnerability the company patched in late 2019, which means that the stolen data is almost two years old, and if you have your email address or phone numbers since then changed, what the hackers have is obsolete. But of course other data does not change (such as dates of birth), and people usually keep phone numbers and emails for many years, so the age of the data is of little comfort.

For its part, Facebook does not seem to notify the affected users, which would be a useful move. If you want to determine if you are part of the leak, you can start with it haveibeenpwnedFor now, that’s an email-only option, but hopefully Hunt will add a phone number field in the future.

via Bleeping Computer




Source link