Massive Data Breach: 200,000 Facebook Marketplace User Records Exposed

Thousands of email addresses and phone numbers have surfaced on a hacking forum following a data breach orchestrated by a threat actor.

This week, a staggering 200,000 Facebook Marketplace user records, containing phone numbers, email addresses, and assorted personal details, emerged on a hacker forum.

Initially, IntelBroker, a notorious threat actor, shared sample data from the breach online. Subsequently, some data was confirmed authentic as random records' email addresses and phone numbers were matched with the sample data.

This breach adds to the mounting cybersecurity apprehensions, joining the ranks of prominent data breaches.

200,000 Records Leaked

According to IntelBroker, a significant Facebook Marketplace database was reportedly pilfered by a Discord user known as ‘algoatson’. Allegedly, algoatson infiltrated the systems of a Meta contractor, casting doubts on the social media giant's internal cybersecurity.

IntelBroker stated, “In October 2023, a cyber criminal identified as ‘algoatson’ on Discord breached a contractor handling cloud services for Facebook, obtaining a portion of its user database totaling 200,000 entries.”

The compromised database contains a plethora of personal data, including names, email addresses, phone numbers, Facebook IDs, and profile information.

As of now, Meta has not issued any statements regarding the breach.

Unveiling the Vulnerability: Assessing the Threat of a Facebook Data Breach

The Dangers Lurking in Stolen Data: A Look into Potential Phishing and SIM Swap Attacks

The pilfered email addresses and phone numbers pose a grave risk, serving as ammunition for phishing assaults. Worse yet, they open the door to SIM swap maneuvers, enabling hackers to snatch multi-factor authentication codes via SMS and seize control of victims' accounts.

To stem the tide, Facebook Marketplace users are advised to refresh their passwords and activate two-factor authentication. Vigilance is key, prompting individuals to monitor account activity for anomalies and fortify overall Facebook privacy settings.

Enter IntelBroker, a notorious threat entity with a rap sheet of cyber breaches, from peddling purloined data from Hewlett Packard Enterprise to the alleged incursion into General Electric Aviation and the infamous breach of DC Health Link, exposing personal data of U.S. House of Representatives members.

Not The First Hack Of Its Kind

Meta's Ongoing Struggle: Facebook Marketplace Data Leak Adds to a Series of Breaches

Meta, the parent company of Facebook, continues to grapple with data breaches, with the recent Facebook Marketplace leak being just one in a string of incidents. With Facebook being the world's most used social platform, it's a prime target for fraudulent activities, with approximately 62% of users encountering scams weekly.

In a previous breach in April 2021, over 533 million Facebook accounts were compromised, leading to Meta facing a hefty $275.5 million fine for its failure to safeguard user data.

The leaked information included names, phone numbers, relationship statuses, and Facebook IDs, with even the phone numbers of Facebook's founders—Mark Zuckerberg, Chris Hughes, and Dustin Moskovitz—falling into the wrong hands.