Millions of Facebook Records Exposed on Amazon Cloud Servers - MacRumors
Skip to Content

Millions of Facebook Records Exposed on Amazon Cloud Servers

by

Millions of Facebook records were found on publicly accessible Amazon's cloud servers by researchers at UpGuard, a cybersecurity firm, reports Bloomberg. The data was uploaded by third-party companies that work with Facebook.

Mexico City-based media company Cultura Colectiva, for example, was storing 540 million records on Facebook users on Amazon's servers, offering up information that included identification numbers, comments, reactions, and account names.

facebooksecurity
A now-defunct app called At the Pool shared sensitive data like names and email addresses for 22,000 Facebook users.

Facebook did not leak this data, but it did provide the data to the third-party companies that went on to improperly store it with no oversight from Facebook. For years, Facebook provided extensive customer information to advertisers and partners, and while the company has since cracked down on the amount of data it shares, the previously obtained information is still widely available.

"The public doesn't realize yet that these high-level systems administrators and developers, the people that are custodians of this data, they are being either risky or lazy or cutting corners," said Chris Vickery, director of cyber risk research at UpGuard. "Not enough care is being put into the security side of big data."

Facebook's prior data sharing habits allowed any app on the site to obtain information from the people using the app and their friends in many cases, which led to the scandal that saw Cambridge Analytica illicitly using personal data acquired from Facebook to create targeted political advertisements in the 2016 election.

Facebook has since modified its privacy policies and has cut down on the access that apps have. Facebook has also suspended hundreds of apps and began audits to make sure data isn't being mishandled.

In response to the public Facebook data found by UpGuard, a Facebook spokesperson told Bloomberg that its policies prohibit the storing of Facebook information in a public database, though there is apparently little oversight from Facebook. Facebook did work with Amazon to take down the databases that were sharing data publicly after UpGuard's discovery.

Tag: Facebook

Popular Stories

iOS 26

iOS 26.5 Features: Everything New in iOS 26.5

Monday May 11, 2026 5:09 pm PDT by
Apple released iOS 26.5 after a few months of beta testing, and while it doesn't have the Siri features we were hoping for since those are being held until iOS 27, there are a handful of useful changes worth knowing about. Subscribe to the MacRumors YouTube channel for more videos. End-to-End Encryption for RCS Support for end-to-end encryption (E2EE) for RCS messages between iPhone and...
Read Full Article66 comments
Dynamic Island iPhone 18 Pro Feature

11 Reasons to Wait for the iPhone 18 Pro

Monday May 11, 2026 9:01 am PDT by
We're only four months out from the launch of Apple's premium next-generation smartphone lineup, and while we're not expecting a sea change in terms of functionality, there are still several enhancements rumored to be coming to the iPhone 18 Pro and iPhone 18 Pro Max. One thing worth noting is that Apple is reportedly planning a major change to its iPhone release cycle this year, adopting a...
Read Full Article40 comments
Apple WWDC25 iOS 26 CarPlay Light mode 250609

Six Popular iPhone Apps Now Available on CarPlay

Thursday May 14, 2026 9:10 am PDT by
Apple's CarPlay system for accessing iPhone apps on a vehicle's dashboard screen has received six popular apps in recent weeks: ChatGPT, Perplexity, Grok, Google Meet, WhatsApp, and the indie artist streaming platform Audiomack. Make sure you have the latest version of each app and they will automatically appear on CarPlay. ChatGPT Starting with iOS 26.4, CarPlay supports voice-based...
Read Full Article29 comments

Top Rated Comments

cmaier Avatar
cmaier
93 months ago
Another day, another facebook data scandal.
Score: 52 Votes (Like | Disagree)
C
cppguy
93 months ago
Everything you post on facebook is public. There's no such thing as a private post, period. You have to treat facebook like that.
Score: 17 Votes (Like | Disagree)
B
benshive
93 months ago
Just when you think Facebook has hit rock bottom they somehow manage to dive off of another cliff
Score: 15 Votes (Like | Disagree)
E
esk
93 months ago
this site should be renamed to apple/facebook fails
Score: 14 Votes (Like | Disagree)
jsmith189 Avatar
jsmith189
93 months ago
I use Facebook with a complete understanding that any and everything on there is being sold and likely improperly used. Instagram too. That's why I don't link credit cards and FB has its own individual password. Having said that, I know apps share their data too, so FB probably have it all anyway.

Zuck is the literal devil.
Score: 9 Votes (Like | Disagree)
T
talisto
93 months ago
I have no huge love for Facebook, but this article title is blatantly false. Facebook didn't expose millions of records on Amazon's cloud servers, one of their 3rd party partners did, and the article states that in the first line, so why is the title "Facebook Exposes Millions of Records on Amazon Cloud Servers"??

The article also craps on Facebook saying there's "apparently little oversight from Facebook", as if to imply that they'd somehow be able to stop these 3rd parties from mismanaging their data, but how could they possibly know what and where their data is being stored once it leaves their APIs? The company violated Facebook's T&C's, I'm not sure how they'd have the authority or ability to "audit" that.

EDIT: CNN's title for the same article is "Hundreds of millions of Facebook records exposed on Amazon cloud servers". That seems much more appropriate?
Score: 5 Votes (Like | Disagree)
Read All Comments