AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Facebook 2021 data breach2/29/2024 ![]() Rather, the regulator had to approach Facebook - using a number of channels to try to obtain answers from the tech giant. The DPC also made it clear that it did not receive any proactive communication from Facebook on the issue - despite the GDPR putting the onus on companies to proactively inform regulators about significant data protection issues. ![]() Because the scraping took place prior to GDPR, Facebook chose not to notify this as a personal data breach under GDPR.”ĭoyle said the regulator sought to establish “the full facts” about the breach from Facebook over the weekend and is “continuing to do so” - making it clear that there’s an ongoing lack of clarity on the issue, despite the breach itself being claimed as “old” by Facebook. “Previous datasets were published in 20 relating to a large-scale scraping of the Facebook website which at the time Facebook advised occurred between June 2017 and April 2018 when Facebook closed off a vulnerability in its phone lookup functionality. Much of the data appears to been data scraped some time ago from Facebook public profiles,” he also said. “A significant number of the users are EU users. “The newly published dataset seems to comprise the original 2018 (pre-GDPR) dataset and combined with additional records, which may be from a later period,” the DPC’s deputy commissioner, Graham Doyle said in a statement. ![]() ![]() However, the Irish Data Protection Commission (DPC), Facebook’s lead data supervisor in the EU, told TechCrunch that it’s not abundantly clear whether that’s the case at this point. And indeed for breaches themselves - as the bloc’s General Data Protection Regulation (GDPR) bakes in an expectation of security by design and default.īy pushing the claim that the leaked data is “old” Facebook may be hoping to peddle the idea that it predates the GDPR coming into application (in May 2018). Not least because, under European Union data protection rules, there are stiff penalties for companies that fail to promptly report significant breaches to relevant authorities. There’s plenty of reasons for Facebook to try to downplay yet another data scandal. However as security experts were quick to point out, most people don’t change their mobile phone number often - so Facebook’s trigger reaction to downplay the breach looks like an ill-thought-through attempt to deflect blame. “The exposed data includes the personal information of over 533M Facebook users from 106 countries, including over 32M records on users in the US, 11M on users in the UK, and 6M on users in India,” Business Insider said, noting that the dump includes phone numbers, Facebook IDs, full names, locations, birthdates, bios and some email addresses.įacebook responded to the report of the data dump by saying it related to a vulnerability in its platform it had “found and fixed” in August 2019 - dubbing the info “old data” which it also claimed had been reported in 2019. The breach was reported by Business Insider on Saturday, which said personal data (including email addresses and mobile phone numbers) of more than 500 million Facebook accounts had been posted to a low-level hacking forum - making the personal information on hundreds of millions of Facebook users’ accounts freely available. Facebook’s lead data protection regulator in the European Union is seeking answers from the tech giant over a major data breach reported over the weekend.
0 Comments
Read More
Leave a Reply. |