Meta fined €265M over a massive 2021 Facebook data leak

Meta fined €265M over a massive 2021 Facebook data leak

Meta, the parent company of Facebook and Instagram, has been fined nearly €265 million by Ireland’s data privacy regulator for failing to prevent the massive 2021 Facebook data breach.

The Irish data protection commission (DPC) launched the investigation into whether Facebook complied with Europe’s General Data Protection Regulation (GDPR) laws in April 2021 after the phone numbers and personal data of 533 million Facebook users was leaked on a hacker forum for free. At the time, Meta said the cyber thieves obtained the information using a vulnerability that the company fixed in 2019, and that this was the same information involved in a prior leak reported in January 2021.

Since 2021, the DPC has slapped Meta and its other subsidiaries, Instagram and WhatsApp, with €912 million in fines for alleged violations of Europe’s General Data Protection Regulation (GDPR). In September 2022, Meta was fined €405 million over Instagram’s handling of children’s data, the second-largest GDPR fine in history.

A Meta spokesperson said it was reviewing the DPC’s decision “carefully” and that it had cooperated fully with the agency’s investigation.

Back to the list

Latest Posts

Critical CrushFTP flaw exploited in the wild

Critical CrushFTP flaw exploited in the wild

According to Shadowserver, nearly 1,040 CrushFTP servers are still unpatched and exposed online.
21 July 2025
UK sanctions Russian hackers for malicious hybrid operations

UK sanctions Russian hackers for malicious hybrid operations

Additionally, UK’s NCSC has publicly attributed the deployment of a sophisticated new malware dubbed ‘AUTHENTIC ANTICS’ to the APT28 threat actor long thought to be a unit of the GRU (Military Unit 26165).
21 July 2025
APT28 targets Ukrainian defense sector using AI-powered Lamehug malware

APT28 targets Ukrainian defense sector using AI-powered Lamehug malware

Lamehug is integrated with Qwen 2.5-Coder-32B-Instruct, a powerful LLM accessed via the HuggingFace API.
21 July 2025