Facebook: Magnitude of the leaked data

About 2 days ago bleepingcomputers reported about a leak of over 500.000.000 Facebook user records.

Scratching the surface revealed that the data is available to nearly everyone.

Here are some numbers to estimate the magnitute of the leak.

77 Gb of plaintext data from 105 countries world wide can be found on the Internet. Some indicators make clear that at least part of the data is from 2019, but only Facebook can make clear if there is also more current data included.

The collections seem not to be from one web scraping session, but might be local web scraping campaigns in each country. Some file names are even in local languages.

A world map with all countries (file size in MB).

 


 

Here are the top 20 based on file size in MB.

 



The data is of the following categories.

  • name
  • sex
  • relationship status
  • address
  • employer
  • email address (very seldom)
  • year of birth (very seldom)
  • telephone number (very seldom)
  • some dates and IDs

Note that citizens from various EU states are affected which is a violation of the EU-GDPR... let's see what the EU lawyers will make out of it.

Update:

The picture gets clearer if we measure the number of records per country.


And here again the top 20 but this time based on records per country.



 

Cheers,

Thomas

Popular posts from this blog

Release #3: Terminology, Frameworks and Standards - Part 1

Image
I n my previous blog posting we defined our CDC, the function it provides and introduced some basic terms. Next we will look at catalogues and models that help defenders to understand the actions of attackers. The MITRE ATT&CK catalogue categorizes typical attack techniques and tactics and provides many additional information which is often very helpful in the daily life of a CDC architect or analyst. Info Box Tactics, Techniques and Procedure (TTPs) ! TTPs are an attacker's actions, regardless of the phase in the kill chain. This refers to tactics, techniques and procedures, not the underlying strategy.   MITRE ATT&CK™ Matrix The MITRE ATT&CK™ Framework describes itself on the web page (https://attack.mitre.org/) as follows: MITRE ATT&CK™ is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for th
Read more

Release #1: Cyber Defense in highly regulated Markets - Intro

T oday, in the middle of the 21st century terms like "Cyberwar" and "Cybercrime" are omnipresent in our society. Fortunately the Cyberwar is (yet) no real war between states; instead it is a mixture of sabotage, espionoage, psyops, manipulation of information and as well the theft of money(1)(2)(3). The relams of nation-state hackers and cyber crimnals and also tradional crimnals overlap because it is oportunistic ("Go where the money is.").(4)   Between the 80s and the 90s of the 20th century our current situation was mostly just in the heads of computer nerds and cyberpunk authors. Some of the computer freaks stepped over the border, people that were called "Hackers" pushed the technology and thinking beyond its intention and limits, found failures (bugs) in the systems and codes to get control over telephone and computer systems for fun and to learn how they work. In these days every bigger IT company had their own Unix-flavor with their own h
Read more