Posted8 avril 2021, 16:11
A file of 533 million Facebook users is circulating among web hackers. This file mainly contains phone numbers and email addresses. Experts warn against received SMS.
The file of 533 million Facebook users circulating among web hackers reminds us that in the digital age, you have to be parsimonious in exposing your data and be careful when an e-mail or an SMS that seems knowing yourself well requires you to click on a link.
How do I know if my data is circulating?
The haveibeenpwned.com site allows you to find out if your phone number or your email address is on the databases exchanged by hackers. It is known to be reliable among cybersecurity professionals. Likewise, the French site Zataz.com offers a paid watch service for individuals.
But it is important not to trust just any site and give it information… which will then be sold. Jean-Jacques Latour, head of expertise for the personal assistance site cybermalveillance.gouv.fr, is a little dubious about the real usefulness of the information produced by a site like haveIbeenpwned. “There is no guarantee of completeness” and “it may scare you for not much”, he believes.
In any case, if you had entered your phone number on Facebook before mid-2019, you are most likely one of the 533 million Internet users – nearly 20 million in France – whose data has been hacked, and partly published. on a hacker forum last weekend.
Should I be concerned if my name is in the Facebook leak?
As it is, you risk nothing – but watch out for any misleading messages you might receive. “The trap that we can expect is to receive a fake SMS saying hello this is Facebook, we detected a weird connection on your account and inviting you to click on a link, ”explains David Sygula, analyst at CybelAngel (which tracks data leaks on behalf of companies).
“You don’t ask yourself any questions, you click on the link… and you are trapped”, with the risk of being robbed of sensitive information – passwords or access codes for example – or of seeing a spyware on your device.
According to David Sygula, the Facebook file includes phone numbers, but on the other hand few email addresses – around 111,000 for France, or 0.5% of Internet users appearing in the file – so the email bomb attacks are already in place. a little less likely.
Is the Facebook affair exceptional?
Not. Le Facebook file “Is nothing compared to the mass of stolen data that hackers are constantly exchanging or reselling”, notes Damien Bancal, host of the Zataz.com site, who has made infiltration a specialty underground data exchange networks.
“Last night, in four hours, I was able to access more than 150 different databases,” giving private information that is sometimes very well segmented, he explains. “I have a boutique which sells vehicle owner data: names, first names, addresses, license plates, vehicle registration data, ”he says, for example. The exchange values vary according to the size of the file, the degree of confidentiality of the information they contain, their degree of freshness, etc.
The email address ultimately sells very inexpensively, from “a few cents per email address up to a few hundred euros for the 15-20 million address pack”, estimates Damien Bancal. “An email address list of 40,000 company boss addresses (…) can be worth 500 to 1,000 euros (550 to 1,100 francs),” says David Sygula.
What advice should I follow?
The basic principle is that any information that is entered on a site or a social network, even a trusted one, can one day be exposed. “You have to give your information sparingly,” explains Damien Bancal.
He recommends using several different email addresses, for example by pole: health, family, school, work, press and forums… which can then be grouped together on a single platform using tools such as Thunderbird.
In general, “you have to avoid spreading your life on the internet because the internet forgets nothing,” recalls Jean-Jacques Latour. “Avoid giving your email address if you don’t need to, or create email addresses trash can».
Get the latest news delivered to your inbox
Follow us on social media networks