People can now enter their phone numbers into a website to see if they appeared in a recent Facebook data breach.
Details of more than 530 million people were leaked in a database online, largely consisting of mobile numbers.
People can use the Have I Been Pwned online tool to check if their numbers or emails were compromised.
Facebook says the data is from an “old” breach in 2019 but privacy watchdogs are now investigating.
The data
Facebook said it had "found and fixed" the breach more than a year-and-a-half ago.
But the information has now been published for free in a hacking forum, making it widely available.
The database covers 533 million people in 106 countries, according to researchers analysing the data. That includes 11 million Facebook users in the UK, 30 million Americans and 7 million Australians.
Not every piece of data is available for each user but 500 million phone numbers were leaked compared with “only a few million email addresses”, Troy Hunt, a security expert who runs HaveIBeenPwned said in a blog on his website.
'Not just a tiny slice of people'
Mr Hunt launched the phone number search function after “unprecedented traffic” to the website, following the news of the Facebook data leak.
Previously, users of the platform could only search for email addresses.
Visitors to the website can now enter their mobile number into a search box, and the website will confirm if it has appeared in the leaked database.
“I wanted to ensure Have I Been Pwned could answer that question for everyone, not just a tiny slice of people,” Mr Hunt told the BBC.
It has also been suggested that Facebook’s own chief executive, Mark Zuckerberg, had his mobile number leaked in the database.
"This is the number associated with his account from the recent Facebook leak," security expert Dave Walker tweeted, along with a screenshot of Zuckerberg's leaked phone number.
In another turn of events, Mark Zuckerberg also respects his own privacy, by using a chat app that has end-to-end encryption and isn't owned by @facebook
— Dave Walker (@Daviey) April 4, 2021
This is the number associated with his account from the recent facebook leak. https://t.co/AXbXrF4ZxE
The BBC is not responsible for the content of external sites. View original tweet on Twitter
The screenshot also suggests Mr Zuckerberg was on messaging platform Signal - which uses end-to-end encryption and is not owned by Facebook.
Facebook has requested users input their phone numbers since 2011, citing security reasons.
It allows for “two-factor authentication”, an additional feature that sends a text to a user’s mobile whenever somebody logs into their account.
But the tech giant has not elaborated on the recent leak, beyond saying the “old data” was "found and fixed" in August 2019.
“Facebook are yet to put out a clear position on this,” Mr Hunt added. “They've alluded to a 2019 incident being the root cause, but that doesn't go far enough to explain the data in circulation.
“There's a vacuum of information right now, and that vacuum is being filled with a lot of speculation.”
Facebook did not respond to the BBC’s request for comment.
Meanwhile, several investigations have been launched into Facebook by privacy watchdogs around the world.
Ireland's Data Protection Commission said it was working with the tech firm to establish if “the dataset referred to is indeed the same as that reported in 2019”.
The Philippines’ National Privacy Commission and Hong Kong’s Office of the Privacy Commissioner have also launched probes into the breach.
Latest Stories
-
Shamima Muslim urges youth to lead Ghana’s renewal at 18Plus4NDC anniversary
17 minutes -
Akufo-Addo condemns post-election violence, blames NDC
25 minutes -
DAMC, Free Food Company, to distribute 10,000 packs of food to street kids
2 hours -
Kwame Boafo Akuffo: Court ruling on re-collation flawed
2 hours -
Samuel Yaw Adusei: The strategist behind NDC’s electoral security in Ashanti region
2 hours -
I’m confident posterity will judge my performance well – Akufo-Addo
2 hours -
Syria’s minorities seek security as country charts new future
3 hours -
Prof. Nana Aba Appiah Amfo re-appointed as Vice-Chancellor of the University of Ghana
3 hours -
German police probe market attack security and warnings
3 hours -
Grief and anger in Magdeburg after Christmas market attack
3 hours -
Baltasar Coin becomes first Ghanaian meme coin to hit DEX Screener at $100K market cap
4 hours -
EC blames re-collation of disputed results on widespread lawlessness by party supporters
4 hours -
Top 20 Ghanaian songs released in 2024
4 hours -
Beating Messi’s Inter Miami to MLS Cup feels amazing – Joseph Paintsil
5 hours -
NDC administration will reverse all ‘last-minute’ gov’t employee promotions – Asiedu Nketiah
5 hours