Facebook keeps user info open to hackers on Amazon Servers

We all know that Facebook has been using Amazon Cloud services for a while to store info of the record number of users. Although the social media giant is trying hard to keep most of the data on its premises, some application demands are forcing it to take a big amount of server space on lease from AWS.

Now news is out that Facebook has kept the sensitive data open to hackers until a security team from cybersecurity firm UpGuard discovered and alerted it.

The sensitive details include email addresses, account names, identification numbers, comments, reactions, account names, and passwords. As the storage blobs were left unprotected, any hacker could have or might have accessed the info.

Therefore the latest news alert marks another privacy debacle of Facebook – which already has been marred by Cambridge Analytica data scandal.

UpGuard says that among the data sets exposed, critical info of a Mexico based company named Cultura Colectiva is also included.

Cybersecurity Insiders has learned that over 146GB of data and more than 540 million records of user info related to the company have been leaked so far.

Coming to other sensational news related to Facebook password scam, from the past three days Facebook users based in the western nation are complaining the social media giant is trying to harvest their password data as it is asking for their email passwords at the time of sign up of a new account.

It is like a phishing attack where users are coaxed to hand over their email passwords which can later be used against them.

However, Facebook has reacted immediately to the news and said that users who are signing in with Russian internet firm Yandex and GMX Mail passwords are being asked to do so. And the Mark Zuckerberg Company assures that their email passwords will never be stored on the company servers’ forever- who knows?

Naveen Goud
Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

No posts to display