Personal information of approximately 200,000 Facebook Marketplace users has been leaked and found circulating on the dark web, raising concerns about data security and user privacy. The leak, first reported by Bleeping Computer, exposes a wide range of sensitive details, including names, phone numbers, email addresses, Facebook IDs, and potentially even profile information.
According to security researchers, the data breach originated from a compromised Facebook contractor managing cloud services. A hacker using the alias “algoatson” on Discord is believed to have breached the contractor’s systems and stolen the user database in October 2023. The stolen data was later shared on a hacking forum by a known threat actor named IntelBroker.
The potential consequences of this leak are significant. Malicious actors could use the exposed information for various purposes, including:
- Phishing attacks: By leveraging email addresses and phone numbers, scammers can launch targeted phishing campaigns to trick users into revealing sensitive information like passwords or financial details.
- Identity theft: The stolen data could be used to impersonate victims online or offline, potentially leading to financial losses or reputational damage.
- Spam and marketing campaigns: Spammers can exploit the leaked email addresses for unwanted marketing emails or even more deceptive campaigns.
Facebook, now operating under the parent company Meta, has yet to officially comment on the breach. However, the company has a history of facing scrutiny for data privacy issues. In 2021, a massive leak exposed the personal information of over 530 million Facebook users, resulting in a hefty fine from the European Union.
This latest incident underscores the importance of data security and user privacy. Here are some steps Facebook Marketplace users can take to protect themselves:
- Change your Facebook password: Use a strong and unique password for your Facebook account and enable two-factor authentication for added security.
- Review your privacy settings: Limit the information shared on your Facebook profile and review who can see your posts and activity.
- Be cautious of suspicious emails and messages: Do not click on suspicious links or attachments, and be wary of unsolicited communication, even if it appears to come from Facebook.
- Monitor your accounts for suspicious activity: Regularly check your bank statements and credit reports for any unauthorized activity.
If you believe your information may have been compromised in this leak, consider reporting it to Facebook and taking steps to mitigate potential damage. Remember, vigilance and proactive measures are crucial in protecting your online privacy and security.
