On April 3, 2021, Business Insider reported that the private info of greater than half a billion Facebook customers was dumped onto a hacking discussion board:
The uncovered information consists of the private info of over 533 million Facebook customers from 106 nations, together with over 32 million information on customers in the US, 11 million on customers in the UK, and 6 million on customers in India. It consists of their cellphone numbers, Facebook IDs, full names, areas, birthdates, bios, and, in some circumstances, e-mail addresses.
Business Insider reported that the uncovered information was posted in a “low-level hacking forum” on April 3.
The information breach was not directly confirmed by Facebook, which mentioned in an April 6 blog post that the downside initially occurred in 2019 and has since been mounted:
We consider the information in query was scraped from folks’s Facebook profiles by malicious actors utilizing our contact importer previous to September 2019. This characteristic was designed to assist folks simply discover their associates to attach with on our companies utilizing their contact lists.
When we grew to become conscious of how malicious actors had been utilizing this characteristic in 2019, we made modifications to the contact importer. In this case, we up to date it to forestall malicious actors from utilizing software program to mimic our app and add a giant set of cellphone numbers to see which of them matched Facebook customers. Through the earlier performance, they had been in a position to question a set of consumer profiles and acquire a restricted set of details about these customers included of their public profiles. The info didn’t embrace monetary info, well being info or passwords.
We reached out to Facebook and requested whether or not the firm would notify customers affected by the breach, however didn’t get a response in time for publication. We will replace if we hear again. A Facebook spokesperson told Reuters, nevertheless, that it doesn’t have plans to take action. In lieu of that, Facebook customers can examine the web site Have I Been Pwned to see if their e-mail addresses or telephones have been half of that or different information breaches.
As Wired reported, victims of the breaches included some notable figures, together with Facebook cofounder and CEO Mark Zuckerberg and a number of other excessive rating authorities officers in the U.S. and Europe.