Hundreds of thousands of Facebook Marketplace users had their personal information stolen and posted on a dark web forum, putting them at serious risk of phishing, identity theft, and other cybercrime.
According to a beepcomputer According to the report, a known data leaker with the alias IntelBroker posted a new thread on an underground forum, with 200,000 Facebook Marketplace registrations. The records contained people's names, phone numbers, email addresses, Facebook IDs, and Facebook profile information.
The hacker claims that this is a partial Marketplace database, stolen by a different threat actor, with the Discord alias “algoatson.” This person allegedly breached the systems of a Meta contractor late last year. “In October 2023, a cybercriminal named 'algoatson' on Discord breached a contractor managing cloud services for Facebook and stole its partial user database of 200,000 entries,” IntelBroker reportedly said in the forum thread.
The publication said that at least some of the data is valid, as random sampling was taken and email addresses and phone number information were successfully matched.
What can hackers do with your data?
IntelBroker is a well-known leaker, having a long history of leaking major companies. Before Meta, IntelBroker was seen sharing sensitive data from DC Health Link, Hewlett Packard Enterprise (HPE), General Electric Aviation, Weee! and others.
Information like this is a real treasure trove for hackers around the world. By knowing details about people's personal lives犀利士
, they can design convincing phishing attacks, break into their computers and smartphones, and possibly even steal money and cryptocurrency. They can also target businesses, deploying different malware and ransomware, and engaging in devastating Business Email Compromise (BEC) attacks.
Companies that experience data breaches often offer affected individuals free identity theft protection services.
Meta has yet to formally comment on the incident.