NEW: Ethical hacker and breach expert @intidc sat down with the RFOB team for an exclusive discussion on his discovery around the Facebook data breach of 533 million users. THREAD🧵 /1

.@intidc told us that he told Facebook about the contact importer tool, a Facebook tool that made such a breach possible, back in 2017! The company chose not to take action on a serious flaw choosing instead to prioritize growth over privacy security. /2

.@intidc explains why he’s so concerned by the vulnerability he detected. Facebook, in prioritizing user growth over privacy, neglected the safety and security of its users. /3

.@intidc: “Even if GDPR didn’t exist, I would expect such a company to do the right thing that’s good for their user, which is informing them.” /4

On April 20, 2021 @intidc and journalist @Pieterjanvl released a leaked internal Facebook memo that showed how Facebook’s PR team was trying to actively downplay the nature of the breach and avoid criticism for not being transparent. /5

.@intidc describes how Facebook’s growth team overrules their privacy and security team favoring profit over privacy. /6

.@intidc says that while he isn’t a lawyer, he thinks there is a strong argument to be made for a GDPR violation. /7

@intidc .@intidc further illustrates the point that Facebook continues to prioritize growth and profit over the privacy of its users /8