Cybersecurity researchers said that more than 267 million Facebook users had their personal data exposed in an online database that collected their names, Facebook IDs, and phone numbers.
The database was available online without a password to anyone who accessed it for about two weeks, according to a data-security researcher.
The researcher reported that 267,140,436 records were exposed and that most of the people affected are from the United States. The report said that people identified in the database could be targeted by spam messages or other scam attempts using their name and phone number.
A Facebook representative said after the database was taken offline: “We are looking into this issue, but believe this is likely information obtained before changes we made in the past few years to better protect people’s information.”