Security News > 2021 > April > Facebook data leak now under EU data regulator investigation
Ireland's Data Protection Commission is investigating a massive data leak concerning a database containing personal information belonging to more than 530 million Facebook users.
"Previous datasets were published in 2019 and 2018 relating to a large-scale scraping of the Facebook website which at the time Facebook advised occurred between June 2017 and April 2018 when Facebook closed off a vulnerability in its phone lookup functionality," the DPC said.
Samples of the Facebook data from the leak seen by BleepingComputer show that almost every user record in the database contains a mobile phone number, a Facebook ID, a name, and the member's gender.
Scammers can use use the leaked info in SIM swap attacks to steal their targets' multi-factor authentication codes sent via SMS. You can use the Have I Been Pwned data breach notification service to check if your info was exposed in this massive Facebook data leak by entering your email or phone number in the search field.
Roskomnadzor, Russia's telecommunications watchdog, also asked Facebook to provide details on the leak of Russian users' personal data.
"Roskomnadzor sent a request to the management of Facebook Inc with the requirement to provide the most complete information about the leak of personal data of Russian users of the social network," the Russian watchdog said today.