Facebook says that a vast trove of personal information, uploaded freely to the internet, was harvested as part of a feature gone wrong. The data was not stolen in a hack but instead through malicious users of its "contact importer", it said. Though that feature was intended to allow people to upload their contacts from their phone to Facebook, and find people they might know, malicious actors were able to use it to scrape the personal information of people who were already on the platform. That happened before September 2019, Facebook said in a blog post, and the bug that made it possible has now been fixed. But over the weekend it became clear that the data had become availably publicly online, vastly increasing the risk that anyone involved in it might face. That includes 535 million accounts, which belong to people including chief executive Mark Zuckerberg.
Apr-7-2021, 10:19:38 GMT