A user of the cybercriminal forum RaidForums has offered 533 million records of Facebook user data for only a few US dollars. The data, which was originally leaked when threat actors exploited a Facebook vulnerability in 2019, comprises full names, birthdates, phone numbers, email addresses, and other personal information. Although old, the data is likely still valuable to cybercriminals. To access it, the RaidForums user asked that interested parties “donate” eight forum tokens. Offering data on criminal forums for free, or nearly free, is not unusual and is often an attempt to increase a forum user’s reputation. This practice makes stolen data widely accessible and is likely to catalyze phishing campaigns, account takeovers, and identity fraud in the short-term future (one to three months).
Digital Shadows
Threat Intelligence and Digital Risk Protection Resources
