Over the weekend, the cybersecurity intelligence firm Cyble discovered a threat actor selling a database that contains 267 million Facebook profiles for around $600. These profiles, mostly from users in the United States, were originally found last month on an open Elasticsearch database. The profiles on the database do not contain passwords but do include the user’s full name, phone number, and unique Facebook ID. Approximately 16.8 million Facebook profile records that also included email addresses, dates of birth and gender were later found on another unsecured Elasticsearch database. It is currently unknown how the data was originally leaked, but it is possible that the data was obtained by scraping Facebook profiles that had privacy settings configured to make the profile information publicly available.
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is