Hackers are selling more than 267 million Facebook profiles, on Dark Web websites and other hacker forums for just $541, Cyble reports.
The data includes everything from email addresses, names, phone numbers, Facebook IDs, dates of birth, age, and more.
267 million Facebook accounts sold on the Dark Web for $600
Minus the passwords, thanks
Fortunately, it did not include Passwords. Still, the information is enough to set up phishing campaigns and other online fraud. So this news is not silly and Facebook should be 100% on it to prevent its users from suffering some kind of fraud.
In the original tweet it was written:
#Exclusive – 267 million @Facebook Identities sold for €500: the value of online identities is declining these days! #DarkWeb #ThreatIntel @BleepinComputer @Bank_Security @USCERT_gov @IndianCERT @NCSCgov @EU_Commission
https://twitter.com/AuCyble/status/1252064792526938112?ref_src=twsrc%5Etfw
Cyble told Bleeping Computer that its researchers are verifying the data and adding it to its breach notification service. They have yet to identify how the data was leaked; however, Cyble believes "it could be due to a leak in the third-party API."
Something similar happened in December.
Interestingly, security researcher Bob Diachenko, along with Comparitech, discovered a similar Facebook data breach in December. The database included the same number of Facebook accounts; however, the records contained only names, phone numbers, and Facebook IDs.
The database was eventually deleted when Bob contacted the ISP that was hosting it. But soon after, another server came online with an additional 42 million Facebook accounts. This time, it was hit by a hacker who left a message asking users to secure their servers. At last, a samaritan hacker.
It's hard to tell if the records in Facebook's latest data breach are the same as or different from those discovered by Bob. Whatever the case, the important thing to note is that the details of many Facebook profiles may still be in the possession of malicious users.
If you are in doubt as to whether your profile was part of the Facebook data breach, you should reset your password for peace of mind.
Facebook isn't the only one involved in a data breach this month. The popular video conferencing tool Zoom also saw something similar; Nearly 500,000 Zoom accounts were sold on the Dark Web. Crazy.