Apps

Anyone Can Search For You On Facebook Using Your Phone Number Associated With Two-factor Authentication

Written By Tanmay Patange | Mumbai | Published:

Hack:

  • Facebook privacy woes continue as users complain that the phone number they added to safeguard their account using or two-factor authentication has also been associated with their user profile
  • As a result, anyone with just the right set of information available at their disposal can use these phone numbers to look up users' profiles

Facebook privacy woes continue as users complain that the phone number they added to safeguard their account using or two-factor authentication has also been associated with their user profile, and therefore, anyone with just the right set of information available at their disposal can use these phone numbers to look up users' profiles. Surprisingly, users cannot opt out, reports TechCrunch.

The issue came to limelight after Emojipedia's Jeremy Burge revealed what's been happening in the series of tweets. Burge tweeted a screenshot saying that a phone number added for two-factor authentication for security can be searched, without providing users with a way to prevent that from happening.

Facebook's option "Who can look you up using the phone number you provided?" has only three settings to choose from: 'Everyone,' 'Friends of friends' and 'Friends.' However, there's no option to restrict everyone from looking you up using the phone number provided for two-factor authentication.

Facebook pulls the plug on controversial Onavo VPN app but it will continue to collect user data in other ways

In his subsequent tweet, Burge said that phone numbers associated with 2FA are also shared with Instagram that prompts users "Is this your number?" once they add to Facebook.

In a statement to TechCrunch, Facebook spokesperson noted that the settings "are not new" and applies to "any phone numbers you added to your profile and isn't specific to any feature."

What is the workaround?

However, if you don't want anyone to look you up using your phone number, you can simply remove your phone number from 2FA. However, putting an end to 2FA might be risky. Here's what you need to do. You can start by disabling two-factor authentication and removing your number. Go to facebook.com/settings?=mobile and click the option 'Remove' to your number. Once you have removed your phone number from two-factor authentication, nobody will be able to look you up using your mobile number. Now that you have removed Facebook 2FA, you can use other third-party authenticator apps to strengthen your account's security without revealing your phone number.

DO NOT MISS