Earlier this month, the personal data of over 530 million Facebook users leaked on a hacker forum. Following this, the company confirmed the existence of vulnerabilities but pointed out that it would not notify users affected by this data leak.
Although Facebook has pointed out that it has fixed a previous vulnerability, which allowed hackers to download user data from the social network, a security researcher has now discovered another vulnerability that allows hackers to grab Facebook user’s email addresses.
The tool, which is used to exploit vulnerabilities, can retrieve email addresses if the user has set privacy elements to anything other than the “Only Me” option. In addition, it is pointed out that the vulnerability has already been reported to Facebook, but the company has not corrected it.
- Samsung Galaxy S22: Top news and leaks
- Facebook allows you to export posts and notes to other platforms
- First Alienware laptop since 2007
Facebook, in response, tried to characterize this as a minor incident, but at the same time pointed out that the vulnerability has not yet been fixed.
The person, who posted a video for the Motherboard site with a tool that collects e-mail addresses of users on Facebook, wanted to remain anonymous but pointed out that the tool is available to the hacker community. Allegedly, these email addresses could be combined with phone numbers leaked in an earlier attack, which could be used for telemarketing, hacking, or fraud.