Facebook has not yet recovered from the damage that Cambridge Analytica scandal had brought, but it has taken another toll, thanks to the latest data leak. This new data leak has affected at least 276 million users’ private data. A variety of data such as the user IDs, names and phone numbers were exposed due to errors in security. It is believed that some malicious individuals and organizations have received access to this data, meaning that all this information can further be used for phishing, telephone and internet scams.
Bob Diachenko, a security researcher, is responsible for bringing this data leak to the limelight. According to the security researcher, the data leak happened during the first week of December, but the online database has now been taken private. Before the company got notified of the data leak and the server was taken back to private, some hackers managed to download the online database, says Diachenko. He also claims to have seen the online database available in a hackers’ forum, ready to be downloaded as a single file. The leak has affected users from the United States.
Apparently, a loophole in an API from Facebook has caused the data leak. Through an illegal task, the data in question could be recovered. It should be noted that the leak has affected more users who had set their profile visibility as public, compared to those who had chosen privacy options. Also, those who had allowed search engines like Google to grab information from their Facebook profile pages have also been put under the threat. As said earlier, Facebook has a pretty bad history when it comes to ensuring user privacy, though the company has been making so many promises in the past.
Whether the company would tackle the issue as it had done in the past is another question.