Friday, July 3, 03:59
Home security More than 267 million Facebook profiles are sold on the dark web

More than 267 million Facebook profiles are sold on the dark web


Cybercriminals sell over 267 million Facebook profiles on the dark web and on hacking forums for just £ 500 ($ 623). None of this archives does not include passwords. However, it does contain information that could allow attackers to carry out spear phishing attacks and send fake SMS for to steal credentials.

Last month, the researcher security Bob Diachenko discovered an exposed base data Elasticsearch containing about 267 million Facebook profiles. Most profiles belonged to users by United States.

These files often contained it his full name user, his phone number and a unique Facebook ID.

The ISP hosting the database took the server offline, as soon as it learned from Diachenko about their report data.

Shortly afterwards, a second server containing the same data and another 42 million files was uploaded to Internet and accepted attack by strangers hackers who left a message telling owners to insure their servers.

From this new data, 16,8 million files contained more information, such as Facebook email address, date of birth and gender.

We don't know who these servers belonged to, but Diachenko believes they belong to a criminal organization that stole them. data using the Facebook API before it is locked.

The data is sold for just £ 500

This weekend, the security company Cyble discovered one hacker who sold this database for £ 500 on the dark web and in hacking forums.

In a conversation with Beenu Arora, CEO of Cyble, BleepingComputer learned that researchers have bought the database to verify the data and have added them to the infringement alert service

Dark web

"At this stage, we do not know how the data leaked at first. This may be due to third party API leaks or theft of public profiles, "said the CEO. “Since the files contain sensitive details about them users, may be used by cybercriminals for phishing and spamming ”.

How can this data affect you?

The database sold on the dark web does not contain passwords for Facebook accounts, but contains addresses e-mail and phone numbers some users.

This could allow hackers to perform spear-phishing campaigns aimed at theft of your passwords, sending emails or SMS that are supposed to come from Facebook.

If phishing emails contain information such as date of birth and / or phone numbers, some users may be more willing to give extra information.

Cyble advises users to be very careful with Facebook's privacy settings and watch out for spam emails and messages.


Please enter your comment!
Please enter your name here

Digital Fortress
Digital Fortress
Pursue Your Dreams & Live!


Raspberry Pi: Computer-vision apps are enhanced with the Khronos OpenVX API

The Raspberry Pi Foundation has announced that it is bringing the OpenVX 1.3 API to Raspberry Pi devices to improve the so-called computer vision ...

EKANS ransomware: How does it target large industrial companies?

New samples of ransomware EKANS have revealed how today's online intruders use a variety of methods to endanger important industrial ...

The APT15 hacking team is linked to the Chinese government

In a report published today, the security company in the cyberspace Lookout stated that it found data that connects the malicious Android software ...

Dubai Police: Arrests hackers who attacked Greek companies!

Dubai Police: Arrests hackers who had attacked Greek companies: Raymond Igbalode Abbas, known as "Hushpuppi" and Olalekan Jacob Ponle, ...

Europe and the United States are worried about Google buying Fitbit

Pressure groups are signing a $ 2.1 million bid for Google's Fitbit health watchdog over concerns about secrecy.

Mageia Linux 8: The first alpha version has been released

Recently, Donald Stewart, creator of Mageia Linux, announced the availability of the new version of the operating system ...

Security researchers analyze the "anatomy" of an attack ransomware!

Researchers from the security technology company "Sentinel One" analyzed the "anatomy" of an attack ransomware, showing how hackers invaded a network and ...

CISA & FBI propose measures to protect against attacks through Tor!

The CISA and the FBI announced yesterday some measures that can contribute to the protection of organizations from cyber attacks that ...

Tesla: Breaks the stock market record and surpasses Toyota

Tesla shares hit red and became the most expensive car industry, beating Toyota, Disney and Coca Cola.

Hushpuppi: Hacker Raymond Abbas has been arrested for fraud

A Nigerian influencer-hacker named Raymond Abbas - appeared under the pseudonym Hushpuppi - and posted photos from his luxurious life ...