日期:2019-12-29 17:24





Researcher Finds Unsecured Information on Millions of Facebook Users
A Ukrainian security researcher has reported finding a database with the information of more than 267 million Facebook users on the open internet, the Associated Press reports.
The data includes names, phone numbers and other identifying information. Nearly all of the users were based in the United States.
Bob Diachenko is an independent security researcher in Kyiv. He told the Associated Press, or AP, that criminals likely collected this data.
Diachenko said he discovered the database using a search engine. The database was freely accessible on the internet for at least 10 days beginning on December 4. He informed the internet provider which hosted the database on December 14 when he found it. Five days later it was no longer available.
Diachenko said someone downloaded the database to a special group website two days before he discovered it. Hackers, or people who secretly get access to computer systems in order to get information or cause damage, use that website. So the database may have been shared among criminals.
Paul Bischoff runs the British technology news website Comparitech. It partnered with Diachenko to report his findings earlier this month. Bischoff has been writing about Diachenko's discoveries of unsecured databases for about a year.
The researcher provided the AP with 10 examples from the database. This included unique user identifications, or IDs, and two phone numbers that were answered, all of which were linked to real Facebook users.
The evidence suggests it was most likely criminals in Vietnam who illegally collected the data. They may have "scraped" it from public Facebook pages or by somehow getting special, high-level access to the service. Scraping is automated data-gathering done by computer programs. A small part of the database includes details on Vietnam-based users.
Diachenko said he did not share the database with Facebook, which did not directly confirm the finding. In a statement, representatives for the social media company said it was investigating the issue. They wrote that the finding "likely" involved information gathered before Facebook took some data-protection measures in recent years. The company did not say what those measures were.
In 2018, the company stopped permitting users to search for one another using their phone numbers. It did so after news spread that the political agency Cambridge Analytica had accessed information on up to 87 million Facebook users without their knowledge or permission.
Diachenko said he had not confirmed when the data was collected. He said all the records appeared to be from January to June of 2019. He added that it was unclear who created them.
Security experts say the affected Facebook users are at higher risk of facing password-stealing attacks and identity stealing attempts. The information can be matched with physical and email addresses and other data collected illegally. Facebook user IDs are unique numbers linked with individual accounts.
In September, the news site TechCrunch reported that a researcher found Facebook IDs and phone numbers for more than 400 million users online.
In March, Facebook admitted that it had left hundreds of millions of user passwords readable by its employees for years after a security researcher reported on it.
I'm Pete Musto.


1.no longer 不再


They no longer had him as a friend.

2.search for 寻找


His confronting me forced me to search for the answers.

3.search engine 搜索引擎


Do you want the search engine to see every page on your website?

4.get access to 获取


One thing not to take for granted, even for firms with strong balance-sheets, is that they will get access to external capital.

5.In March, Facebook admitted that it had left hundreds of millions of user passwords readable by its employees for years after a security researcher reported on it.

hundreds of millions of 数亿的


The floods made hundreds of millions of people lose their homes, relatives and friends.
For years, hundreds of millions of Chinese have purchased new smartphones.

6.Hackers, or people who secretly get access to computer systems in order to get information or cause damage, use that website.

in order to 为了...


In order to transform their environment, he drew up the project with painstaking accuracy.
In order to reach this limit a number of technical problems will have to be solved.



鲍勃·狄亚申科(Bob Diachenko)是基辅市一名独立的安全研究员wOu_4E#FgM)R#c。他告诉美联社,可能是犯罪分子收集了这些数据XC6lAnmLA61


保罗·比绍夫(Paul Bischoff)运营着英国科技新闻网站Comparitech(tZ8[&;wG]G。本月初,该网站与狄亚申科合作报告了这一发现(Wz]CG,]lh1Y。比绍夫一年多来一直在写有关狄亚申科发现不安全数据库的文章UHS8.&=tL4kx


  • issuen. 发行物,期刊号,争论点 vi. & vt 发行,流
  • spreadv. 伸展,展开,传播,散布,铺开,涂撒 n. 伸展,传
  • securityn. 安全,防护措施,保证,抵押,债券,证券
  • painstakingadj. 辛苦的,勤勉的 n. 辛苦,苦心,工夫
  • evidencen. 根据,证据 v. 证实,证明
  • availableadj. 可用的,可得到的,有用的,有效的
  • permissionn. 同意,许可,允许
  • identityn. 身份,一致,特征
  • transformvt. 转换,变形 vi. 改变 n. 变形
  • statementn. 声明,陈述