KrebsOnSecurity reports Facebook employees built applications to log unencrypted user password data. The information was stored in plain text on internal company servers and contained information from as far back as 2012. A senior Facebook employee said more than 20,000 staff members had access to the passwords of 200 to 600 million users. “We have fixed these issues and as a precaution we will be notifying everyone whose passwords we have found were stored in this way,” Facebook Vice President of Engineering, Security and Privacy Pedro Canahuati wrote in a blog post. “To be clear, these passwords were never visible to anyone outside of Facebook and we have found no evidence to date that anyone internally abused or improperly accessed them.”
If you want to comment on this post, you need to login.