Blog Layout

Details On Massive Facebook Data Leak Hack

sccomputerguys • Apr 16, 2021

As you're probably aware, recently a vast trove of Facebook profiles totaling 533 million in all, wound up on a hacker forum. The company was initially silent about the issue, but the company has now released a statement about the matter. Unfortunately, that statement isn't terribly reassuring.

The good news, if you can call it that, is that the company reassured its users and investors that it wasn't hacked.

The bad and unsettling news is that Facebook says the hackers simply scraped the profile information from their website. The company stressed that the system itself was not breached, but rather, that the hackers used a large set of phone numbers linked to the profiles they ultimately made off with.

Based on a review of a sample of the data, nearly every record published to the hacking forum contained that user's cell number, Facebook ID, name, and gender. While that's not sufficient to outright steal someone's identity, it represents and excellent start from a hacker's perspective.

The company's formal statement regarding the matter reads in part as follows:

"This is another example of the ongoing, adversarial relationship technology companies have with fraudsters who intentionally break platform policies to scrape internet services." 

"As a result of the action we took, we are confident that the specific issue that allowed them to scrape this data in 2019 no longer exists."

A deeper look into the matter reveals that the 'specific issue' in question that allowed the massive data leak was a feature called 'Contact Importer' that ostensibly made it easier for friends to find one another on the platform. As it turns out, hackers quickly learned they could abuse the feature and Facebook ultimately pulled the plug on it, but of course, not before the hackers made off with hundreds of millions of user profiles.

Independent security researchers around the world were less than impressed by the company's delayed, and somewhat lackluster response. In trying to paint the issue as being old news, they completely miss the point. More than half a billion of their users saw their data compromised because of a feature the company itself introduced and then later deactivated, when its potential for abuse came to light. For a company as enormous as Facebook, it's not a good look.

You May Need To Replace Old Cisco VPN Routers

By sccomputerguys 22 Jul, 2022
Do you own one or more of the following products made by Cisco? The RV110W Wireless-N VPN Firewall The RV130 VPN Router The RV130W Wireless-N Multifunction VPN Router The RV215W Wireless-N VPN ...

Some Requested Features May Be Coming To Microsoft Teams

By sccomputerguys 21 Jul, 2022
Do you use Microsoft Teams?  If so, you'll be thrilled to know that the Redmond Giant is continuing to pour resources into improving the software with a specific focus on audio and ...

It May Be Time To Update Your Business Logo

By sccomputerguys 20 Jul, 2022
Corporate branding can be worth its weight in gold and certain images are absolutely iconic.  The Golden Arches, the Nike "swoosh," and Apple's Apple all come to mind. Logo images give companies ...

Researchers Find New CPU Security Vulnerability

By sccomputerguys 19 Jul, 2022
Remember the Heartbleed scare we had a couple years back?  It was a nasty side-channel attack that was somewhat exotic and difficult to pull off, and it was absolutely devastating and sent ...

Ransomware Hackers Have Set Their Sights On Exchange Servers

By sccomputerguys 18 Jul, 2022
Microsoft Exchange servers are once more in the crosshairs of hackers around the world.  Most recently, hacking groups have been specifically targeting them to deploy BlackCat ransomware. As is common among ransomware ...

The Surprising Ways Mobile Technology Impacts Our Lives

By sccomputerguys 16 Jul, 2022
If you grew up in the days before the internet, it's absolutely staggering to think of all the ways that mobile technology has changed our lives (and mostly for the better). Remember ...

Edge Will Replace Internet Explorer After It Is Gone

By sccomputerguys 15 Jul, 2022
It may seem as though Internet Explorer is the browser that will not die, but according to Microsoft, it is now a step closer to breathing its last virtual breath. Microsoft has ...

New Panchan Botnet Targets Linux Servers

By sccomputerguys 14 Jul, 2022
If you're involved with IT Security at any level and if your network includes Linux servers, keep a watchful eye out for the new Panchan botnet. It first appeared in the wilds ...

How To Protect Your Company With Cybersecurity Awareness

By sccomputerguys 13 Jul, 2022
These days, companies spend significant sums of money to protect themselves from cyber criminals.  The threat matrix is vast, and attacks can come from almost any quarter. That is why many companies ...

Data Breach Hits One Of America’s Largest Healthcare Providers

By sccomputerguys 12 Jul, 2022
Do you receive healthcare of any kind from Kaiser Permanente?  If so, be aware that they recently published a data breach notification indicating that an unidentified attacker accessed an email account that ...
More Posts
Share by: