First incident was originated from the Mexico-based media company Cultura Colectiva which exposed around 146 GB of data that contained over 540 million records detailing comments, likes, reactions, account names, FB IDs, and other sensitive information.
The data remained exposed from at least January 10 when it was discovered through April 3, but Cultura Colectiva was never able to be reached about the apparent breach.
The latest reports of user passwords exposed in plaintext on public servers by Facebook is lamentable, but all too common event in the technology industry.
Facebook later announced changes aimed at protecting user data, including an audit of at least thousands of apps that have the right to access Facebook user data. Even though the app is dead, users that re-use old passwords, or use the same password across a multitude of platforms, may be at risk. Facebook's representative claims that they have taken the databases offline after being notified and now they are investigating the incident to identify how and for what duration the data was available on Amazon's servers. The firm further added, "We are aware of the potential uses of data in current times, so we have reinforced our security measures to protect the data and privacy of our Facebook fanpages' users".
According to the analysis of UpGuard researchers, the database is a treasure trove of exclusive user information all stored in plain sight without having password protection.
Facebook is once again in the line of fire for data harvesting - cool!
UpGuard, in its blog post also claims that Facebook can not mitigate the extent of the damage as it has spread far beyond its controls. However, it does still shine a light on exactly how much data Facebook shares with its various developers and the continued risk from the multitude of companies that may have access to that data. But as TNW says: "The data genie can not be put back in the bottle", and with much reason.
The records allegedly stored by Facebook partners contained data were mostly non-sensitive. "Once alerted to the issue, we worked with Amazon to take down the databases".
Of course, now with the Cambridge Analytica scandal looming on its head, - the tech giant is making some amendments to secure users data - but as they say 'the damage has been done'.
This however, is a standard Facebook response to most such breaches.