Summary List Placement
Facebook wants you to know that the leak of 533 million users’ data on an online hacking forum wasn’t a hack — or at least not a new one.
Insider reported on Saturday that 533 million Facebook users’ personal details, including their names, email addresses, and phone numbers, had been posted to a low-level hacking forum.
Facebook posted a blog on Tuesday explaining why it had not disclosed the apparent breach.
Facebook said the data had not been obtained by hacking into its systems. Instead, it had been scraped off the platform at some point before September 2019.
“Scraping is a common tactic that often relies on automated software to lift public information from the internet that can end up being distributed in online forums like this,” Facebook product management director Mike Clark wrote in the blog.
Clark said the method used to obtain these data exploited a vulnerability in Facebook’s contact importer, a tool that allows users to find the Facebook profiles of people in their phone contacts. Facebook says it fixed that particular vulnerability in August 2019, and that it was previously reported on.
This would mean it wasn’t obliged to notify anyone about a new breach.
Source:: Businessinsider – Tech