Meta fined $263 million for Facebook security breach affecting 3 million EU users

December 18, 2024 at 5:31:35 AM

TL;DR Meta has been fined €251 million by Ireland’s Data Protection Commission for a 2018 Facebook security breach affecting about 3 million EU users. The breach, which occurred in July 2017, allowed unauthorized access to user profiles due to a bug in a video upload feature. The DPC found that Meta violated GDPR regulations on breach notification and data protection by design. Meta stated it took immediate action to address the issue once it was identified.

Meta fined $263 million for Facebook security breach affecting 3 million EU users

Meta has been fined €251 million (approximately $263 million) by Ireland’s Data Protection Commission (DPC) for a 2018 Facebook security breach that affected around 3 million EU users. The penalty, issued under the General Data Protection Regulation (GDPR), is significant but not the largest Meta has faced since the GDPR's implementation.

The breach originated in July 2017 when a bug in a video upload feature allowed attackers to exploit the “View as” function, enabling unauthorized access to user profiles. Between September 14 and 28, 2018, this vulnerability was exploited to log into approximately 29 million Facebook accounts globally, with 3 million located in the EU. The compromised data included users' names, email addresses, phone numbers, and other personal information.

The DPC's enforcement decisions focused on two inquiries regarding Meta's breach notification and data protection measures. Meta was fined €11 million for failing to provide comprehensive breach notifications and €240 million for not adhering to GDPR principles regarding data protection by design. The DPC emphasized the serious risks posed by unauthorized exposure of sensitive profile information.

In a statement, DPC deputy commissioner Graham Doyle highlighted the importance of integrating data protection into the design process to prevent such vulnerabilities. Notably, this enforcement action faced no objections from other EU supervisory authorities, marking a shift from previous criticisms of the DPC's enforcement actions against Meta.

In response, Meta stated that the incident occurred in 2018, and they took immediate corrective actions while informing affected users and the DPC. Earlier in September, the DPC also fined Meta €91 million for a separate 2019 security breach involving improperly stored passwords.

Have more questions on this topic? Ask our AI assistant for in-depth insights.

The Only Digital Marketing Feed You'll Ever Need.

Stay informed your way. Tailored updates when and how you want them. 100% Free.

10,000+ Users

500+ Sources

1000+ Tools

Or

Related Posts

Facebook Implements New Restrictions on Replicated Content to Protect Creators

Facebook Implements New Restrictions on Replicated Content to Protect Creators

Meta for Business
Meta for Business

Official Source

Official Source

Meta for Business is a Official Source. The source has been verified by Swipe Insight team.

Official Source
Automate Meta Ads Creative Generation and Uploading

Automate Meta Ads Creative Generation and Uploading

Featured
Markifact
Markifact

Verified Sponsor

Verified Sponsor

Markifact is a Verified Sponsor. Want to get featured here? Contact us.

Verified Sponsor
Meta Advances Accessibility Efforts on Global Accessibility Awareness Day

Meta Advances Accessibility Efforts on Global Accessibility Awareness Day

Meta
Meta

Official Source

Official Source

Meta is a Official Source. The source has been verified by Swipe Insight team.

Official Source
Understanding App Use Cases for Facebook Developers

Understanding App Use Cases for Facebook Developers

Meta for Developers
Meta for Developers

Official Source

Official Source

Meta for Developers is a Official Source. The source has been verified by Swipe Insight team.

Official Source
Meta working to fix mass bans hitting Facebook Groups globally

Meta working to fix mass bans hitting Facebook Groups globally

Meta Warns Page Managers Against Adding Links in Facebook Posts

Meta Warns Page Managers Against Adding Links in Facebook Posts

Meta to automate 90 percent of product risk assessments with AI system

Meta to automate 90 percent of product risk assessments with AI system

Meta reports Q1 FY25 earnings with 16% revenue growth and 37% EPS increase

Meta reports Q1 FY25 earnings with 16% revenue growth and 37% EPS increase

Related Tools

Markifact logo

Markifact

Verified Tool

Verified Tool

Markifact is a Verified Tool. Want to get this badge? Contact us.

Verified Tool

Marketing Workflows Powered by AI

Featured
Marketing Auditor logo

Marketing Auditor

Verified Tool

Verified Tool

Marketing Auditor is a Verified Tool. Want to get this badge? Contact us.

Verified Tool

Automated audits for Google Ads and Analytics.

Get Featured Here

Showcase your tool in this list.

Contact Us
Dash Hudson logo

Dash Hudson

Manage social media with insights and workflow tools

Organic Social