On September 4th, 2019, news began circulating that Facebook databases have leaked the phone numbers belonging to 419 Million user accounts. These phone numbers were linked to account identities, with some records including the user’s name, gender, and location. The account information was left unprotected and open to anyone looking for the information for an unclear length of time. The exposed database has since been taken offline.
By revealing phone numbers connected to user IDs, Facebook account holders are at risk for increased scam calls, SIM card swapping fraud, and — when combined with previously disclosed passwords — account takeover fraud through credential stuffing attacks.
This phone number and account ID leak is the latest in what has become a long list of security vulnerabilities linked to Facebook privacy concerns. On July 24, 2019, the Federal Trade Commission (FTC) imposed a record-breaking $5 billion penalty on Facebook to settle charges that the company deceived users about their ability to control the privacy of their personal information.
Data Breach Resources to Stay Protected
If you are a Facebook user, your personal information may have been compromised. Make sure to check your account privacy settings, update your passwords, and keep an eye on your phone records and other accounts for fraudulent activity. Here are some additional resources to empower you and your family against identity crime:
- Bringing Social Media Identity Monitoring into the IdentityForce Family
- Password Strength Test
- ID Theft Protection Newsletter
- Data Breach News Summary (Table)
- 2019 Data Breaches – The Worst So Far
- 9 Tips for 2019 Data Breach Victims (Infographic)
- 7 Tips for Protecting Your Identity (Printable PDF)