Today, sensitive personal information has been shared by more than half a billion Facebook users on a well-smuggled hacker forum, according to a security analyst – a potential risk for millions of cryptocurrencies and merchants who could now be vulnerable to SIM swaps and other identities. the attack is based.
The information was first discovered by Alon Gal, chief technology officer of the Hudson Rock Security Company, who posted on Twitter earlier today about the leak:
The leak is related to a security issue that was first discovered in 2019, Gal said. In January 2021, it became known that hackers were able to use the information to gain access to users’ phone numbers; The leak has now been expanded to include “phone number, Facebook ID, full name, location, previous location, date of birth, (sometimes) email address, account creation date, relationship status, bio.”
According to Gal, the information could now allow hackers and fraudsters to spread a range of social manipulation exploits and other non-fictional tactics:
“Bad players will definitely use the information for social engineering, fraud, piracy and marketing.”
Cryptocurrency users are at risk of such attacks. Earlier this year, a victim of a SIM swap attack filed a lawsuit against mobile phone company T-Mobile for $ 450,000, and in 2018 Kaspersky Lab discovered that hackers had managed to steal 21,000 ETH, which is currently over 43 million. Dollars for socio-technical attacks over a 12-month period.
The data breach is also larger than the general ledger breach at the end of last year. Shortly after more than 270,000 users were leaked, users reported blackmail and sued the hardware brochure company.