The biggest data leak in the history of Facebook has taken place recently. Last week, Facebook revised its estimate of the size of the breach, saying that it affected about 87 million people. The company had originally estimated that only about 50 million people were affected. According to The Intercept, Cambridge Analytica used that harvested data to make about 30 million “psychographic” profiles of voters in total.
As per The Times of India, a total of 335 people in India installed the Personality Quiz App, which is 0.1% of the App’s total worldwide installs. Facebook says the information available to it is limited to people who installed the App throughout its lifetime on the Facebook Platform (i.e. 2013 to no later than 17 December 2015).
Facebook reports that 562,120 additional people in India were potentially affected, as friends of people who installed the App. This yields a total of 562,455 potentially affected people in India, which is 0.6% of the global number of potentially affected people.
This is Facebook’s first official confirmation of the possible scope of the data leak in India. To put this in perspective, Facebook currently has over 250 million users in India. By this count, about 0.22% of Indian users were potentially affected
In the Congress meeting last week, Zuckerberg called Facebook “An idealistic and optimistic company” and said: “We focused on all the good that connecting people can bring.”
But he acknowledged by saying that “It’s clear now that we didn’t do enough to prevent these tools from being used for harm as well. That goes for fake news, foreign interference in elections, and hate speech, as well as developers and data privacy.”
Zuckerberg added: “I want to be clear about what our priority is: protecting our community is more important than maximizing our profit.”
Here are a few steps you can take to protect your site and information systems from spammers, hackers and unethical marketing firms:
1. Switch to HTTPS (if you haven’t already)
2. Use blockchain-enabled marketing and user tracking
3. Collect and display data according to device
4. Follow European GDPR standards
5. Have in place a reliable breach response plan