- May 4, 2000
- 16,068
- 7,380
- 146
https://www.usatoday.com/story/tech...s-stored-plain-text-could-searche/3233601002/
Just the latest example why I dumped them a year ago. If you have a Facebook account (especially if you use it to log into other sites), it might be a very good to change your password(s).
Just the latest example why I dumped them a year ago. If you have a Facebook account (especially if you use it to log into other sites), it might be a very good to change your password(s).
Citing an unnamed senior Facebook employee as the source, Krebs says the social network is probing the causes of a series of security failures in which employees built applications that logged the unencrypted password data, which apparently numbers between 200 million and 600 million.
"Storing passwords in clear text is a terrible idea because it would allow employees and potential attackers who steal this data to easily use these passwords and potentially log on to other, non-Facebook-related services as well because users often reuse passwords," Kirda added. "If this data leaks out, or a Facebook employee who has access to this data ends up becoming malicious, having this data lying around might lead to other, easy account compromises that are not directly hosted on Facebook.”