In August of 2019, Facebook was the victim of a data breach that compromised information from 533 million people from 106 different countries.ย Why is this in the news now?ย Because the breach was addressed in a recent email from Facebook management, and that email was accidentally sent to a Belgium-based news outlet and, in that email, they donโt seem too concerned.
The information that was stolen included phone numbers, Facebook IDs, full names, birthdates, location information, biographical information, and even some email addresses.ย But Facebook feels that this didnโt need to be relayed to users, and they donโt plan on changing their minds about it.ย In fact, the email indicates that they are looking to normalize this type of incident.
It was part of a feature that no longer exists, they fixed the issue, and users couldnโt fix it themselves anyway.ย With doubt around whether or not users would even be successfully notified, they didnโt feel that there was a way to ensure the situation was remedied any further.ย As they seem to see it, they had already addressed it on their end, and there was nothing that could really be done by the general public.ย Seems like a โhey, what can you do, itโs going to happenโ kind of response and they said as much in a blog post.
Yes, data breaches are so common now, weโve no longer become phased when a large breach hits the headlines.ย That in itself is a problem, but when we stop reporting on it altogether, that makes it even worse.ย Are we admitting defeat? Or are we just saying that weโre ok living with it?ย Neither answer should be acceptable, and businesses should not be able to say that it is ok to be a part of their problem because it is just a โnormal occurrenceโ.
How did Facebook react when the email was discovered?ย They confirmed it was genuine and told the BBC: โWe understand people’s concerns, which is why we continue to strengthen our systems to make scraping from Facebook without our permission more difficult and go after the people behind it.” The spokesperson later added that LinkedIn and Clubhouse had also faced “data scraping” issues.
Look, itโs not just us, everyone has this problem.
But that doesnโt mean it is ok!ย We need to continually work together to ensure that our personal and professional information is protected through safe cybersecurity practices.ย It isnโt something that we see as negotiable, especially when the statistics show how likely a small business is to not survive a data breach.
Yes, data breaches are being normalized, but that doesnโt mean that we need to accept that as the new normal.