Facebook admits storing millions of user passwords in plain text

Krebs on Security has shocked millions of users with the release of Facebook's information about 200 million to 600 million user passwords in plain text, which is not encrypted.

Typically, user passwords are protected by encryption. However, a series of errors exist that some Facebook applications allow anyone of the company's 20,000 internal access employees to use.

Facebook admits storing millions of user passwords in plain text Picture 1

Then, in a blog post with the title 'Keeping Passowords Secure' - Protect your password securely, Facebook acknowledged this problem and said, hundreds of millions of Facebook Lite users, 10 million other Facebook users and 10 thousand Instagram users are affected. In addition, Facebook added that it discovered the issue in a security test in January and pledged to handle the vulnerability. At the same time, Facebook said, they will send notifications to users affected by this error.

According to Facebook, there is no evidence that the data on the user's password in plain text is used internally or leaked to the outside, so it is not necessary for the user to reset the password.

However, according to Krebs, this pure password storage is thought to have been implemented since 2012 and has at least 2000 Facebook employees used through these archives.

The information this time makes the list of Facebook's security issues increase so many Facebook users are more worried about the safety of their personal information on this social network.