The security research team, led by Anurag Sen, at Safety Detectives has uncovered a significant leak of Facebook data. As much as 3 gigabytes of scraped Facebook user data was found on an Elastic server, which raises additional concerns regarding the company’s security measures.
This follows not only the Cambridge Analytica scandal of March 2018, but a previous data scrape of Facebook users by hackers purportedly based in Vietnam in January 2020. The data that our research found is on top of what was already found, and adds another 12 million records to the list. Many, but not all, of the entries included full details of personally identifying information (PII), stemming from multiple sources – Facebook included. We still do not know who is ultimately responsible for this scrape and how they were able to perform such an extensive and invasive action.
Since discovering the leak, the server has subsequently been taken offline.
SafetyDetective.com is the world’s largest antivirus review website. The Safety Detective research lab is a pro-bono service that aims to help the online community defend itself against cyber threats, while educating organizations on protecting their users’ data. The full article can be read here.