The article mentioned ClearBit, which does a clever (too clever?) way of showing you the Facebook profile, Linkedin profiles, etc given just an email address.<p>I've tried it with an email address I've never publicly disclosed anywhere, and amazingly it works. It found the FB profile linked to that email.<p>I always wondered how ClearBit knew that information. Were they the "malicious actors" Facebook was referring to in their announcement last month?[1]<p>[1] "Malicious actors have also abused these features to scrape public profile information by submitting phone numbers or email addresses they already have through search and account recovery": <a href="https://newsroom.fb.com/news/2018/04/restricting-data-access/" rel="nofollow">https://newsroom.fb.com/news/2018/04/restricting-data-access...</a>
One of the great things about GDPR is that this sort of thing will be flatly illegal. Want to use my IP address to look up information about me? Great, so long as you ask for, and get, my explicit consent.