His security researchers vpnMentor they found one exposed base data ElasticSearch containing a file with more than 100.000 violators accounts Facebook. The file was used by cybercriminals as part of a global hacking campaign against its users SOCIAL MEDIA platform.
"We discovered fraud (hacking campaign and compromised accounts) through an insecure database, which fraudsters use to store data belonging to their 100.000 victims", The researchers said in their report.
The swindlers used the stolen goods credentials to access victims' Facebook accounts and make spam comments on posts. All these the comments eventually led to a fake Bitcoin trading platform, where users were asked to deposit at least € 250.
"Using links that led to counterfeits sites news scammers were trying to bypass Facebook fraud detection tools", Said the researchers. "If the compromised accounts posted the same links for Bitcoin fraud over and over again, they would be quickly blocked by the social networking platform".
The data that existed in the exposed database data with violated Facebook accounts, include: emails, names and telephone numbers. These data belong to people who were registered in a fake Bitcoin trading site.
Experts also discovered dozens of domains used by fraudsters in this campaign.
The researchers they do not know (at least for the time being) if anyone else (other than the criminals who initially broke Facebook accounts) had access to the exposed database.
The file size was over 5,5 GB. The database was exposed from June to September. According to experts at least 100.000 users Facebook victims were victims of this scam.
The researchers informed the social network about their discovery, after confirming that the database was real.
One day after the discovery, the database probably received one Meow attack, which deleted all its data. Since July, security experts have identified dozens of unprotected bases data Elasticsearch and MongoDB, who disappeared inexplicably from criminals as part of a campaign known as the Meow Attack.
"If you are a Facebook user and think you are a victim of this scam, change your credentials immediately", Say the researchers.
"Additionally, if you use the Facebook password on other accounts, change it immediately and there to prevent a possible intrusion. We recommend that you use a password generator to create unique and strong passwords for each account you have".