February 13, 2024 at 02:37PM
A threat actor leaked 200,000 records of Facebook Marketplace users’ personal information, including phone numbers and email addresses. Meta, the parent company of Facebook, has not yet commented. The leak, attributed to ‘algoatson’ on Discord, could lead to phishing and SIM swap attacks. IntelBroker is known for previous breaches, and Meta has faced similar incidents.
Based on the meeting notes, there are several key takeaways:
1. A threat actor named IntelBroker leaked 200,000 records from the Facebook Marketplace, containing personal information such as mobile phone numbers, email addresses, and other data of the users.
2. BleepingComputer verified some of the leaked data, confirming the authenticity of the breach.
3. The leaked database could be used in phishing attacks and SIM swap attacks, posing a serious security risk to the affected users.
4. It’s mentioned that IntelBroker has a history of cybersecurity breaches, including incidents involving DC Health Link, Hewlett Packard Enterprise, General Electric Aviation, and Weee! grocery service.
5. This is not the first incident of this nature for Meta, as they were previously fined for failing to protect Facebook users’ data from scrapers.
6. The April 2021 data leak included the personal information of over 533 million Facebook users, and even the phone numbers of Facebook founders were exposed.
These takeaways highlight the severity of the breach and the potential impact on the affected individuals and organizations, emphasizing the need for prompt and decisive action to mitigate the risks and protect user data.