Facebook confirms leak of 533 mln user accounts, Irish DPC investigating

News Broadband Global 7 APR 2021
Facebook confirms leak of 533 mln user accounts, Irish DPC investigating

Facebook has confirmed that “malicious actors” obtained a dataset containing records of 533 million users by “scraping” public profiles using a vulnerability in the company’s contacts synchronisation tool. The data leaked dates from prior to September 2019 and the vulnerability has since been closed off, said the company in a blog entry posted in response to reports first published by Business Insider. “As a result of the action we took, we are confident that the specific issue that allowed them to scrape this data in 2019 no longer exists,” said Facebook.

According to the report, hundreds of millions of user phone numbers and other details were available in a public database published on a low-level hacking forum. The leaked data includes the personal information of Facebook users from 106 countries, including over 32 million records on users in the US, 11 million on users in the UK, and 6 million on users in India. It includes their phone numbers, Facebook IDs, full names, locations, birthdates, bios, and even email addresses.

Separately, the Irish Data Protection Commission (DPC) issued a statement confirming that it’s in the process of establishing the full details of the leak and that it will communicate further facts as it receives information from Facebook. It warned that there are risks affected users may be spammed for marketing purposes and that they need to be especially vigilant in relation to any services they use that require authentication using a person’s phone number or email address in case third parties are attempting to gain access.


Categories:

Internet

Companies:

Facebook

Regions:

Global

Tags:

Security, Regulations, IT - applications, Consumer

Related Articles

BRAZIL 28 MRT 2023

Facebook ordered to compensate 8 million users in Brazil for personal data breach

Facebook must pay compensation of BRL 72 million in moral damages for violating the privacy of more than eight million Brazilians in 2021, according to a decision issued by the Court of Diffuse and Collective Interests of the state of Maranhao, reported by O Globo. Judge Douglas de Melo Martins, head of the court, upheld the payment of BRL 500 in compensation to each user directly affected by the leak of personal data, in compensation for individual moral damages.

EUROPE 28 NOV 2022

Meta fined EUR 265 mln in EU for Facebook personal data breach in 2019

Ireland's Data Protection Commissioner has handed another multi-million euro fine to Meta for violating the EU's General Data Protection Regulation. The new fine of EUR 265 million is for a data breach reported in 2019, the investigation of which found security systems on Facebook lacking in sufficient protections for user privacy. 

EUROPE 6 SEP 2022

Irish regulator imposes EUR 405 million fine on Meta for violating teen privacy

Meta's Instagram service has been told to pay a EUR 405 million fine for the way it handled teen data, Politico reported. The fine, imposed by the Irish Data Protection Commission (DPC) follows a EUR 225 million fine imposed on WhatsApp and another of EUR 17 million on Facebook. The regulator is still investigating at least six other cases with Meta-owned companies.

EUROPE 18 OKT 2021

DPC suggests new EUR 36 mln Facebook privacy fine

Ireland's Data Protection Commission (DPC) has suggested fining Facebook between EUR 28 million and EUR 36 million in a draft decision against the company, according to a document seen by Reuters. The proposed fine is in response to a complaint filed by Austrian privacy and data rights campaigner Max Schrems's NYOB organisation. The DPC will now share the preliminary ruling with other EU data protection agencies, who have a month to respond to its findings.

IRELAND 24 MEI 2021

Data Protection Commission resumes Facebook investigation after High Court ruling

Facebook has been given six weeks by Ireland's Data Protection Commission (DPC) to respond to its investigation into the company's EU-US data transfers, reports Reuters. This follows a ruling from the Irish High Court that the investigation can resume.

GLOBAL 29 APR 2021

Facebook to 'aggressively' invest in new technologies as ad revenues forecast to slow

Facebook reported a very solid first quarter, though figures were not quite as strong as in the previous quarter, helped again by ad revenues amid the virus pandemic and the consequent trend towards online commerce. Although the company expects sequential growth rates to ease going forward, it has raised its guidance for total expenses. CEO Mark Zuckerberg said the company will continue to invest "aggressively" into novel experiences, and namely into newer areas such as augmented and virtual reality, commer

IRELAND 19 APR 2021

Facebook facing mass action lawsuit in Europe over latest data breach

Digital Rights Ireland (DRI), digital rights advocacy and lobbying group, is calling on Facebook users affected by the latest data breach to join a mass legal action against the company. The group is inviting affected Facebook users across Europe to join a mass action lawsuit at facebookbreach.eu. DRI plans to sue the company to secure damages for affected users.  It claims this will be a first for legal actions against tech giants in Europe, and the largest-ever mass action of its kind. The case will be fi

IRELAND 15 APR 2021

Irish data regulator opens inquiry into Facebook data breach

Ireland's Data Protection Commission (DPC) has opened an investigation into a data breach at Facebook which resulted in the personal information of around 533 million users worldwide being made available on the internet.

GLOBAL 12 APR 2021

Last week in telecoms: M&A activity picks up, DT invests in FTTH and home 5G, and more Clubhouse copies

News in the past week included potential bids for KPN and Orange Belgium, network expansion at subsidiaries of Liberty Global and Deutsche Telekom, and a major distribution deal between Sony and Netflix. The internet platforms were busy trying to copy Clubhouse while also falling victim to scraping of personal data from their sites.

UNITED KINGDOM 8 APR 2021

UK data watchdog looks into data breach at Facebook

The UK's data watchdog is reviewing a data breach at Facebook after the social media company said the data of 11 million UK users had been exposed, reports The Telegraph.

ITALY 8 APR 2021

Italy data watchdog warns Facebook over latest user data leak

Italy's data protection authority, Garante Privacy, said it has contacted Facebook to verify details of the recent leak of the personal data of 533 million users, including that of around 36 million Italians. It has also asked the company to take measures to limit the risks and immediately make available a service that allows all Italian users to check whether their telephone number or email address has been affected by the leak, which resulted in the publication of a dataset containing user records on a lo

EUROPE 15 JAN 2021

Schrems hopes for quick decision on Facebook data transfers after Irish DPC agrees new case terms

The Irish Data Protection Comission (DPC) has agreed to take a swift decision on Facebook's EU-US data flows after a Judicial Review filed by data activist Max Schrems, according to his organisation Noyb. The Irish Data Protection Commission (DPC) oversees the EU operations of Facebook and has been involved in a 7-year-old case brought by Schrems for alleged privacy violations by Facebook.

EUROPE 4 DEC 2020

Irish High Court to hear Facebook appeal against data transfer ruling

The Irish Data Protection Commission (DPC) confirmed that Facebook's judicial proceedings against the regulator are scheduled before the Irish High Court on 15 December.

EUROPE 19 OKT 2020

Irish watchdog investigating Instagram's handling of children's personal data

David Stier, a US data scientist who first discovered the loophole, estimates that as many as 5 million children had personal details exposed when they switched from a personal to a business setting to receive statistics on how popular their photos and videos were. No proof is required that the user actually runs a company, meaning personal contact details such as phone numbers and email addresses were publicly displayed on their profile, allowing anybody to contact the children outside of the app.

IRELAND 14 SEP 2020

Facebook files appeal against order to stop EU-US data transfers

Facebook has filed an appeal with the Irish High Court against an order from Ireland's Data Protection Commission (DPC) to stop data transfers between Europe and the US, reports the Wall Street Journal.

Just In

19 DEC 16:42

SLT-Mobitel launches 5G network in Sri Lanka

19 DEC 16:19

Dialog Axiata launches 5G network, connects 1.5 million subscribers

19 DEC 15:56

UK govt to ban AI-enabled nudification apps to protect women, girls

19 DEC 15:42

3 UK launches last-minute Christmas sale

Commentary

13:56

Video market set for slower growth ahead

11:38

Netflix buys Warner Bros to deepen content catalogue

11:11

KPN's mixed performance in Q3 raises questions for strategy day

15:26

Stock markets breaking records but what happened to Odido's IPO plans?

Background

01:04

The week in telecom: Wi-Fi bolt-ons take off to boost broadband growth, video market works on consolidation

01:39

The week in telecom: Netflix wins bidding for Warner Bros, Apple poaches new execs, Samsung debuts trifold

13:51

Proximus vs. Telenet: Proximus performs better in Q3 while Telenet uses up cash

14:16

Proximus Domestic still struggling with low margins

Complete profile

Before downloading the whitepaper, we would like to ask you to complete your profile with company and position. After confirming you will receive the white paper.