Facebook Marketplace/Official Website, Public Relations
A hacker leaked 200,000 hacker forum records that include mobile phone numbers, email addresses and other personal information of Facebook Marketplace users. According to the website BleepingComputer, some of the leaked information was verified by comparing the email addresses and phone numbers to random records, and the website was able to confirm that the leaked information was indeed Suitable for platform users.
Threat actors can use the leaked email addresses and phone numbers to promote phishing attacks.
The exposed mobile phone numbers and personal information can also be used in SIM Swap attacks that allow stealing two-step verification codes sent via SMS and taking over accounts.
At the information security company ESET It is noted that "this news is consistent with other incidents made possible by attacks on third-party providers.
These supply chain attacks exploit weaknesses in systems to attack higher-value targets, such as Facebook, but also Microsoft and other tech giants.
Disclosures like this are a clear reminder that everyone is personally responsible for the data shared with these corporations.
But not only should the posted content be reconsidered and double-checked, but especially the personal information shared, such as real names, birthdays, location and more, valid payment details.
Using two-step verification is necessary, as evidenced by the recent wave of account takeovers or attempts at such, made possible by data leaks like this one."
More on the same topic:
Facebook