Meta To Pay €265 Million Over Security Breach: Millions Of User's Contact Were Leaked On a Public Database

Source

META is making headlines for reasons you probably didn't expect.
According to reports, the Irish Data Protection Commission (DPC) fined Facebook a total of €265 million for violating the European Union's General Data Protection Regulation (GDPR).

For quite some time, Facebook has been under active scrutiny. And the outcomes of this examination have been unexpected. It has been determined that Facebook does not take user security seriously, and as a result, will face severe penalties. Only this time, the repercussion is a whopping €265 million.

All of this follows a long-overdue inquiry that began in April 2021 in response to a data breach that occurred in 2019.
Breach of Data

Hundreds of millions of Facebook users' phone numbers were apparently discovered in a public web database. Even the fact that it was quickly removed does not change the reality that none of our private data on Facebook is as secure as we believe. Also, thanks to Tech Crunch for releasing a report on the incident.

In April, 2021, the DPC began investigating the breach. At the time, Meta posted a statement about the breach called “The Facts on News Reports About Facebook Data.” Meta claimed that an attacker had used its contact importer tool to spam the server with phone numbers to see which ones had Facebook accounts associated with them.
Source

Each time the attacker got a response, they were able to gain the personal details of the user and match these details up with the users’ phone number. As a result, users’ personal data had been leaked to malicious actors.
Source

Meta issued a statement claiming that the flaws had been rectified and that the application was now 100% secure. However, some argue that if it happens once, it will happen again.

I feel it is time for these applications to minimize the amount of personal information they request in order to reduce the frequency with which data breaches occur.

Several blockchain companies have attempted to solve the problem by creating blockchain social media apps that do not require users to give out their email addresses or phone numbers. For example, both Bitclout and Blockster are social media apps that allow users to sign in with just an Ethereum wallet.
Source

Ethereum Developers have also offered a proposal, called “EIP-4361,” to standardize the wallet login process across all apps. Supporters believe this could eliminate the need to ask users for sensitive personal information in social media apps, which could help to prevent breaches like this in the future.
Source

Source

What are your thoughts on the subject matter?

Posted Using LeoFinance ^Beta