How to find friends on facebook with phone number
Jump to navigation. Facebook is one of the most famous social networking sites in the world. Originally, it is a great way which allows users, to sign-up for free profiles, to connect with friends, work colleagues or people they don't know, online. If you are new to the Facebook world then you must be having a list of people whom you want to send a friend request.SEE VIDEO BY TOPIC: How to Find Friends On Facebook by Contact Number 2020
SEE VIDEO BY TOPIC: Find Friends on Facebook using their phone numberContent:
- Is there a way to use Facebook without giving up my privacy?
- How to Search for People in Your Contacts on Facebook Using Your iPhone
- Add Friends to Facebook From Your Contact List
- How to find, add friends on Facebook: Step by step guide
- Subscribe to RSS
- Facebook no longer lets you search for friends by phone numbers
Is there a way to use Facebook without giving up my privacy?
Facebook really wants your phone number, nagging you for one as soon as you join. This isn't all bad since it can help secure your account with two-factor authentication. On the flipside, this makes it easy to reveal the private phone numbers of virtually anyone on Facebook, including celebrities and politicians.
We're going to look at how a hacker would do this and how to protect yourself. Many Facebook users may not even realize that their private phone number is connected to their Facebook account, having forgotten that they did so.
Facebook isn't allowed to simply extract your number from your phone, but they can do what I refer to as the "app equivalent of cyberbullying" by repeatedly asking you to confirm and save your number each time you launch Facebook. The default privacy setting on Facebook allows anyone to search for you by your phone number once you add it.
This is not a new issue. It has been around as long as the Facebook Graph search, but Facebook chooses to see this issue as a feature, as a letter received by Belgian researcher Inti De Ceukelaire shows.
Certainly, some people, such as celebrities and politicians, should be more concerned than others about revealing their private number online. However, anyone could potentially have a cyberstalker or hacker target them. Once a hacker has a phone number and your name, they can quickly use open-source intelligence OSINT tools that we've covered on Null Byte to grab further public data like occupation, employer, spouse, relationship, any other public info.
A hacker could use the information to further social-engineering attacks by calling you directly. Think of the classic " Microsoft tech support" scam, only the caller trying to trick you knows your name and intimate details of your personal life.
Armed with these, it's easy to make the target think the caller is legitimate. How would a hacker actually go about finding your number? In theory, if they had a lot of time, they could just search all 9,,, potential numbers until they stumbled upon yours.
Clearly, this isn't very efficient, so let's see the right way of doing it. In the examples below, her number was changed to protect her real number.
If you think of a target's phone number as one of all the possible digit US phone numbers, you can quickly see that 10 billion North American phone numbers it far too large a list to effectively search through.
Let's take an example: Looking at the NANP, we can see that the first three numbers are the area code, and the plan allows for 2—9 as the first digit and for the second and third digits. That information right there eliminates one billion possible numbers from the hacker's list. The hacker can also quickly take advantage of this if they know or can take an educated guess at where you live, as it's as easy a Google search. By doing this, the hacker can remove a further 9 billion million numbers from the list of potential guesses.
The next three numbers after the area code in our example are the central office prefix. Again, the plan calls for 2—9 for the first digit and 0—9 for both the second and third digits, but with a caveat.
In area codes where the second digit is 1, the third can't also be 1. This yet again removes a large number of phone numbers from the hacker's list. The last four digits of the phone number is the line number, in this case, I took the educated guess that the Mayor of DC would have a DC area code, and a hacker could also look up the target's Facebook account and likely find a hometown or the current city the target lives in or works from.
Some larger cities like Los Angeles will have multiple area codes within them, but no matter how many "split" area codes there are, it still greatly reduces the hacker's list of possible numbers.
Now that I know my target's number is ??? Thankfully, Facebook has our back and has made this probably the second easiest step, after using the area code. In order to get the last two numbers, we just have to go a few steps into the password reset process. To do this, the hacker goes to the main Facebook page and clicks "Forgot account" to start the process. The hacker is then presented with a list that includes a face picture paired with each matching account that helps them quickly identify their target.
There's our target right at the top! Facebook then kindly provides the hacker the last two digits of the targets number, along with some information about the emails accounts associated with their Facebook account, such as the first and last letter, and sometimes the email domain. That's as far as the hacker has to go. They don't actually reset the password, and they shouldn't so that the target never receives any kind of notification to tip them off.
With over million users, PayPal and other services can help add to the information the attacker has collected so far. In this case, if the target is a PayPal user, the hacker can get two additional digits of the phone number we're looking for. In the picture above, you may have noticed that the first email listed is a Gmail account that starts with "M" and ends with "R. That's funny, since my targets first name starts with an "M," and her last name ends with an "R.
Google accepted it, but that doesn't necessarily mean that it's the target's email. The hacker can check by doing the same password reset trick they pulled with Facebook.
Yep, this account just so happens to have a number that ends in I think not. Now that I have an email to work with, I can jump over to PayPal in a new tab, and once again, use the same password reset trick. This time, when I get to the password reset screen, I get not only all four digits of the line number, but also the first number of the area code too!
This allows me to be reasonably sure that I'm on the right track with the area code, and verifies my previous work on finding the last few numbers. This means I have the number ???
In other words, my list has gone from 10 billion choices to about a thousand in just a few minutes of work.
At this point, a hacker could just start throwing numbers into the Facebook search bar, but that still wouldn't be that efficient. So what does a lazy hacker do?
They take advantage of a Facebook feature that allows you to conduct a bracket search. Facebook allows you to upload lists of contacts in CSV format, and then tells you if they are on Facebook so you can add them as friends. By constructing my own contact list of potential numbers, I can quickly rule out large chunks of wrong numbers. In this case, I know the number has to be in the range from to By cutting that in half and creating a list of numbers from to , I can effectively rule out half of my list, as the target will only be in one of the two half lists created.
Then, I can upload the list and instantly determine if they are on it or not. From there, a hacker can open the file in Google Sheets or Excel and change the column formula for the phone numbers to one that will iterate over the numbers they need to check, as seen in the following example. In the excel formula below, I start by taking the lowest value phone number, in this case, , then I add 10, to it in order to increase the fifth place digit by 1.
This formula will repeat as many times as needed, but we shouldn't do it more than 1, times because there are only a thousand numbers in our list to guess. If the target hadn't had a PayPal account to help us derive the third and fourth place digit, then we would be adding to increase the third digit instead.
From there, it is simple to sign into a Facebook account and go to the Friend Finder feature. Click on the Gmail logo and then "Find Friends. Next, scroll to the bottom of the page and upload your CSV file containing the phone numbers you wish to try.
After it's uploaded, Facebook presents the hacker a list of "Friends" to add from the list. They would then search for their target inside that list. My target doesn't seem to be here, so I know they aren't in this half of our batch of numbers. Next, instead of testing the next , I split the next in half and check one of those halves.
This is because I already know the target will be on the second list since they weren't in the first half. The hacker can continue searching in this way until the target appears on a phone number list. From there on out, the hacker would test smaller and smaller batches of numbers until they have only a handful to test. I stopped when I had it down to about 30 numbers.
Obviously, this will take longer if the hacker has less information about the other digits of the phone number to begin with, as they will have a larger number set to search. Facebook will rate-limit the hacker to five attempts per day but they can get around this by signing into another account. Once that hacker has it down to a handful of numbers, they can go to the Facebook search bar and type them in one by one.
To do so, just type the number into the search bar with no hyphens. In total, it took me around 30 minutes to an hour to find the target's number, and these same steps could be used on anyone who has their phone connected to Facebook. The simplest way to protect yourself is to never connect your phone to Facebook.
If you still want to use two-factor authentication, Facebook allows you to use a USB U2F device without having to rely on your phone.
If you absolutely must have your phone connected, navigate to Facebook Settings , select "Privacy," then "Who can look you up using the phone number you provided? On a mobile device, you would tap on the three-line menu icon, select "Account Settings" iOS users will have to select "Settings" first , then tap on "Privacy.
While this still will not provide absolute protection, it will make the hacker's life much more difficult. Thanks for reading! Want to start making money as a white hat hacker? This is an amazing article. I do have one addition. Then grep out everything that is wireless and you have all the wireless possible numbers in DC on a single list. This will be a much faster way at discovering the number. Thanks for the tip Jimothy, I was thinking of something along those lines but didn't ever getting around to testing it.
There is one potential problem with greping out the wireless central office prefixs, the categorization on that site seems to not be super accurate as the target's number falls on a landline prefix. Keep in mind that anyone can transfer a landline number to a cell phone or vice versa and that has likely muddied the waters over the years.
That being said I think what you propose is a good plan to quickly cut down the list of numbers if you're willing to accept the small risk that the target will be excluded. Hi, i have got a problem: when I try to upload my contacts to facebook it appears a "message" saying that my contacts have got to include an e-mail.
Does anybody know how can I fix that please?
How to Search for People in Your Contacts on Facebook Using Your iPhone
Is it possible to be a passive user of Facebook? I want to read announcements relating to friends and colleagues, and maybe post comments, without building a profile with photos, a timeline and so on. I have managed perfectly well without joining, but occasionally miss useful information that is not available elsewhere. What distinguishes Facebook from Twitter, Reddit, Metafilter and so on is that it is based on real identities, which are fundamentally public. Some of them may also have posted images of you, mentioned you in comments, or linked to things you posted on other services.
Earlier this week, Facebook released updates for Facebook for iPhone 3. This new feature for the native Facebook apps for iPhone and Android compares registered phone numbers of Facebook users to the phone numbers in your contact list. Then, open the Facebook app and click on the Friend icon on the home screen. At the top right corner of the Friends page you will see an arrow. Click on this, and then tap on the Find Friends button.
Add Friends to Facebook From Your Contact List
Facebook really wants your phone number, nagging you for one as soon as you join. This isn't all bad since it can help secure your account with two-factor authentication. On the flipside, this makes it easy to reveal the private phone numbers of virtually anyone on Facebook, including celebrities and politicians. We're going to look at how a hacker would do this and how to protect yourself. Many Facebook users may not even realize that their private phone number is connected to their Facebook account, having forgotten that they did so. Facebook isn't allowed to simply extract your number from your phone, but they can do what I refer to as the "app equivalent of cyberbullying" by repeatedly asking you to confirm and save your number each time you launch Facebook. The default privacy setting on Facebook allows anyone to search for you by your phone number once you add it. This is not a new issue. It has been around as long as the Facebook Graph search, but Facebook chooses to see this issue as a feature, as a letter received by Belgian researcher Inti De Ceukelaire shows. Certainly, some people, such as celebrities and politicians, should be more concerned than others about revealing their private number online.
How to find, add friends on Facebook: Step by step guide
Facebook is the default social networking solution for personal as well as business marketing. Even major corporations such as financial institutions and auto parts stores are using Facebook as a key marketing tool. To make the best use of Facebook for your business, you must connect with a wide network of people. Using the Facebook application for the iPhone, you can use the application's "Find Friends" feature to access your iPhone contact list and it will search Facebook so you can send out friend requests to your contacts.
As part of its overhaul of user privacy, Facebook has announced a raft of changes to how it handles user data, including removing the ability to find other Facebook users by searching for their phone number. Facebook has also taken steps to limit the data available to third-party apps. It's tightening the review process for apps that request your photos and posts, and apps are no longer allowed to request sensitive data including marital status, religious views, education and work history — the type of data that enabled organizations like Cambridge Analytica to deliver precisely targeted ads to voters in the US presidential election. In the same blog post, Facebook admitted that its Messenger and Facebook Lite Android apps gather users' call and text history on an opt-in basis.
Subscribe to RSS
If you know someone's phone number, you may be able to use it to find someone's Facebook account. As long as the phone number is associated with an account, the account will come up when you search for the phone number. This wikiHow will show you how to search a phone number on Facebook using the website or phone app. Click the search bar.SEE VIDEO BY TOPIC: How to search/find friends on Facebook by mobile number 2019
Facebook users have a new privacy concern after discovering that the social network apparently stores a list of phone numbers belonging to your Facebook friends and, apparently, to contacts stored in the mobile device that you use to access Facebook's mobile app. Before you panic, this list is not publicly visible to your entire social network. According to The Washington Post , this Phonebook Contacts feature has been live for "a few years," though many users are just noting its existence. Your personal list, created from contacts stored in your mobile device, is accessible on your Facebook profile. To view the list, go to the account tab in the upper-right-hand corner of your Facebook page, click "Edit Friends," and then select Contacts from the sidebar menu all the way on the left-hand side of the page.
Facebook no longer lets you search for friends by phone numbers