San Francisco, December 14: Banking data of nearly 29,000 Facebook employees stored on unencrypted hard drives has been stolen by a thief from a payroll worker's car, the media reported. The hard drives contained information including bank account numbers, employee names, the last four digits of their social security numbers, their salaries, bonuses, and equity details. The stolen hard drives, however, did not contain Facebook users' data. Facebook Data Breach: 100 App Developers May Have Accessed Users’ Data, Says FB.
According to a CNBC report on Friday, Facebook said the hard drives contained unencrypted personal data of current and former employees and alerted those employees to the theft "out of an abundance of caution".
The hard drives contained information on thousands of US workers who were employed by Facebook in 2018. "The company also failed to notify employees until almost a full month after the break-in occurred on November 17," The Verge said in a report.
An internal email revealed Facebook only realized the hard drives were missing on November 20 and confirmed that the drives contained employee information on November 29.
The social networking platform is now offering its employees two-year subscriptions to an identity theft protection service. It is surprising that hard disks containing financial data was unencrypted.