"Gives away" because they were stored on a server with no password protection. I trust nobody calls this "hacking".
Facebook tries "damage control" by saying that some records were duplicates, so perhaps only 210 million user ID's and phone numbers are out in the wild.
If you think that because you didn't give FB your number for 2FA, then your ID and number weren't hacked, then I guess you trust that none of your FB friends allowed a FB app access to their address book.
If you think FB phone numbers "needed" for 2FA are used only for 2FA, then think again, they use the phone numbers to target ads anyway.
Facebook - "recruiting, packaging, and selling bulk morons to the highest bidder for 15 years".