In a shocking turn of events, a former Meta engineer is facing scrutiny from the Metropolitan Police after allegedly downloading a staggering 30,000 private photos belonging to Facebook users. This incident has raised serious questions about data security and the integrity of platforms that hold sensitive personal information.
The Allegations and Investigation
The ex-employee, residing in London, is suspected of creating a programme that allowed him to bypass security measures and access personal images without authorisation. The breach was uncovered over a year ago, leading Meta to terminate the employee’s contract immediately and alert law enforcement about the potential data theft.
A spokesperson for the Metropolitan Police confirmed that a man in his 30s was arrested in November 2025 on charges of unauthorised access to computer material. Following the arrest, he was released on bail and must check in with police again in May, as reported by the Press Association.
Response from Meta
In light of this alarming breach, Meta has stated that it has notified all Facebook users whose images were compromised. The tech giant also reassured users that it has taken steps to enhance its security protocols to prevent future incidents.
This incident is being thoroughly investigated by the Metropolitan Police’s Cybercrime Unit, which received a referral from the FBI, highlighting the international implications of the case.
A Pattern of Security Issues
This breach is just the latest in a series of security challenges that have plagued Meta. In November 2022, the company was fined €265 million (£228 million) by the Irish Data Protection Commission for a breach that exposed the personal information of hundreds of millions of users. Furthermore, in September 2024, the DPC found that Meta had inadvertently stored certain passwords without encryption, leading to another hefty fine of €91 million (£75 million).
Adding to the scrutiny, Meta has also been embroiled in legal disputes regarding the design of its applications. In March, a jury in California ruled that both Meta and Google had intentionally crafted addictive social media platforms that adversely affected the mental health of users. The case involved a young woman named Kaley, who was awarded $6 million (£4.5 million) in damages, a decision that Meta and Google are currently contesting.
Why it Matters
This incident underscores the urgent need for robust data protection and security measures in the tech industry. As we increasingly rely on digital platforms to share personal moments and memories, the responsibility lies with companies like Meta to safeguard this information. The fallout from this breach not only affects individual users but also highlights the broader implications for user trust in technology. With each scandal, the call for accountability grows louder, emphasising that it is high time for tech giants to prioritise user safety over profits.
