Hundreds of millions of Facebook users had their account passwords stored in plain text and searchable by thousands of Facebook employees — in some cases going back to 2012, KrebsOnSecurity has learned,” Brian Krebs reports for KrebsOnSecurity. “Facebook says an ongoing investigation has so far found no indication that employees have abused access to this data.”
“Facebook is probing a series of security failures in which employees built applications that logged unencrypted password data for Facebook users and stored it in plain text on internal company servers,” Krebs reports. “That’s according to a senior Facebook employee who is familiar with the investigation and who spoke on condition of anonymity because they were not authorized to speak to the press.”
“The Facebook source said the investigation so far indicates between 200 million and 600 million Facebook users may have had their account passwords stored in plain text and searchable by more than 20,000 Facebook employees,” Krebs reports. “Facebook has posted a statement about this incident…”
Read more in the full article here.
About Post Author
Share this via:
