Cybercriminals are attempting to sell 81,000 private Facebook messages and claim to have personal information obtained from millions of accounts.
The broadcaster believes most of the affected accounts are based in Russia and Ukraine, but users in the UK, Brazil and other countries have also had their data compromised.
The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
The hackers told the BBC that they have private details from more than 120 million accounts, but the news service believes “there are reasons to be sceptical about that figure”.
Data stolen by the hackers include holiday pictures, private messages between couples and a complaint about a son-in-law.
A number of Russian users whose data appeared during the investigation were contacted and confirmed to the BBC that the information was indeed theirs.
Facebook denies that a data breach has occurred and that its security systems are still intact, but said it would take steps to ensure no further accounts were accessed.
Speaking to the BBC, the company’s product chief Guy Rosen said it believes “malicious browser extensions” are behind the leaked information.
Extensions are designed to add features that “don’t exist” on standard web browsers, such as Google Chrome or Apple’s Safari, the Mirror reports.
But the newspaper says it “doesn’t take a huge leap of imagination” to see how these extensions could be used to “observe” users inputting passwords and email information.
Rosen said Facebook had “contacted browser-makers to ensure that known malicious extensions are no longer available to download in their stores”.
“We have also contacted law enforcement and have worked with local authorities to remove the website that displayed information from Facebook accounts,” he added.
-
Fit for a king: must-visit palaces around the UKThe Week Recommends Our pick of the nation’s most magnificent residences for nobles and royals
-
Is Andy Burnham making a bid to replace Keir Starmer?Today's Big Question Mayor of Manchester on manoeuvres but faces a number of obstacles before he can even run
-
Christian Brückner: why prime suspect in Madeleine McCann case can refuse Met interviewThe Explainer International letter of request rejected by 49-year-old convicted rapist as he prepares to walk free
-
Airplane crash-detection systems could be vulnerable to hackersUnder the Radar 'The idea scares the shit out of me,' one pilot said
-
Social media: How 'content' replaced friendshipFeature Facebook has shifted from connecting with friends to competing with entertainment companies
-
Meta on trial: What will become of Mark Zuckerberg's social media empire?Today's Big Question Despite the CEO's attempt to ingratiate himself with Trump, Meta is on trial, accused by the U.S. government of breaking antitrust law
-
What does an ex-executive's new memoir reveal about Meta's free speech pivot?Today's Big Question 'Careless People' says Facebook was ready to do China censorship
-
What's Mark Zuckerberg's net worth?In Depth The Meta magnate's products are a part of billions of lives
-
Questions arise over the use of an AI crime-fighting toolUnder the Radar The tool was used in part to send a man to prison for life
-
Why Captchas are getting harder to solveUnder The Radar If the process continues to get harder, it could cause problems for people trying to book tickets for popular shows
-
Is the AI bubble deflating?Today's Big Question Growing skepticism and high costs prompt reconsideration
