Teacher
Professional
- Messages
- 2,670
- Reaction score
- 814
- Points
- 113
Secrets of sellers and buyers of the Facebook Marketplace have become another trophy for the IntelBroker hacker.
Someone under the pseudonym IntelBroker published in the public domain the personal data of 200,000 users of the Facebook Marketplace service.
According to the attacker, the information was stolen in October 2023 by an unknown hacker with the nickname" algoatson " in Discord. Apparently, then he hacked the systems of one of the contractors of Facebook, which provides cloud services to the social network.
The leaked database contains a variety of personal information: user names, phone numbers, email addresses, Facebook IDs, and profile data.
Experts verified the authenticity of some of the published information by comparing it with the original records. The data was correct. Hackers can use the received emails for phishing attacks, and phone numbers can be used for SMS fraud and account theft by spoofing SIM cards.
Representatives of Meta have not yet commented on the incident.
IntelBroker is best known for hacking DC Health Link, which led to the leak of personal data of employees and members of the US House of Representatives, as well as subsequent congressional hearings.
In addition, the attacker is associated with a number of other high-profile incidents in the field of cybersecurity. In particular, with the sale of stolen data to Hewlett Packard Enterprise, the alleged hacking of General Electric Aviation systems and an attack on the food delivery service Weee!.
For Facebook, this is also not the first major leak. In November 2022, Meta was fined 265 million euros for leaking information to more than 500 million users a year earlier. However, then the attackers collected data only from public profiles.
Almost every leaked entry in 2021 contained a phone number, name, and personal ID. Even information about the founders of Facebook-Mark Zuckerberg, Chris Hughes and Dustin Moskowitz-was included in the list.
Experts, as always, advise Facebook users to strengthen security measures — use complex passwords, two-factor authentication, and regularly check their privacy settings.
Someone under the pseudonym IntelBroker published in the public domain the personal data of 200,000 users of the Facebook Marketplace service.
According to the attacker, the information was stolen in October 2023 by an unknown hacker with the nickname" algoatson " in Discord. Apparently, then he hacked the systems of one of the contractors of Facebook, which provides cloud services to the social network.
The leaked database contains a variety of personal information: user names, phone numbers, email addresses, Facebook IDs, and profile data.
Experts verified the authenticity of some of the published information by comparing it with the original records. The data was correct. Hackers can use the received emails for phishing attacks, and phone numbers can be used for SMS fraud and account theft by spoofing SIM cards.
Representatives of Meta have not yet commented on the incident.
IntelBroker is best known for hacking DC Health Link, which led to the leak of personal data of employees and members of the US House of Representatives, as well as subsequent congressional hearings.
In addition, the attacker is associated with a number of other high-profile incidents in the field of cybersecurity. In particular, with the sale of stolen data to Hewlett Packard Enterprise, the alleged hacking of General Electric Aviation systems and an attack on the food delivery service Weee!.
For Facebook, this is also not the first major leak. In November 2022, Meta was fined 265 million euros for leaking information to more than 500 million users a year earlier. However, then the attackers collected data only from public profiles.
Almost every leaked entry in 2021 contained a phone number, name, and personal ID. Even information about the founders of Facebook-Mark Zuckerberg, Chris Hughes and Dustin Moskowitz-was included in the list.
Experts, as always, advise Facebook users to strengthen security measures — use complex passwords, two-factor authentication, and regularly check their privacy settings.