Home Featured News Facebook Admits Millions of Instagram User Passwords May Have Been Revealed

Facebook Admits Millions of Instagram User Passwords May Have Been Revealed

Facebook stored way more Instagram passwords in a readable plaintext format than it initially thought, the company announced on Thursday.

Last month, the social media firm admitted that it stored “hundreds of millions” of user account passwords in plaintext logs. That’s a serious privacy blunder, but it was a bigger problem for users of Facebook’s flagship platform. The company said that the incident only impacted “tens of thousands” of Instagram users.

Now, Facebook is revising that number — and by quite a bit, too. In an update to the original security incident blog post, Facebook says that it now estimates that the passwords storage issue impacted “millions” of Instagram users.

On the other hand, the company did not reveal how many millions were affected or when exactly it discovered that more users were impacted. Facebook updated its security blog post, ironically titled “Keeping Passwords Secure,” at 7 a.m. this morning.

The plaintext password logs were accessible by around 2,000 engineers and developers at the company, but Facebook maintains that they were not “abused or improperly accessed” by those employees.

But it’s still a serious mishandling of sensitive user data. Plaintext passwords are easily readable by anyone who comes across them. If that data leaked, it could jeopardize the security of millions of internet users. That’s why most sites scramble password data so even they can’t access or read them.

In its original blog post, the company said the plaintext password storage happened inadvertently. In other words, it was an accident. But many of those passwords were stored in plaintext for years — some logs data back to 2012.

Facebook says it will begin notifying the additional Instagram users who were impacted by the security incident.

How to Protect Yourself

In the meantime, it’s smart to change your Instagram password (even if the company has no “evidence” of abuse).

That’s especially true if you use the same password for multiple sites, which you shouldn’t be doing anyway.

Ideally, you should be using strong and unique passwords for each site or platform that you use. That’s not always an easy task, so we recommend using a password manager and opting-in to two-factor authentication whenever possible.

Richard Sabinohttp://itspecialistdr.com
I like to share Information Technology News and how-to tips with all the people around me. I created this blog to reach the most people I can.


Please enter your comment!
Please enter your name here

Must Read

Microsoft Azure Virtual Training Day: Fundamentals

(adsbygoogle = window.adsbygoogle || ).push({}); Today we're...

Eliminate background noise from conference calls with Krisp for free

Krisp is an AI-powered filter that virtually eliminates background noise, letting your work-from-home experience be a little more pleasant and professional.

Microsoft is offering free certification voucher

(adsbygoogle = window.adsbygoogle || ).push({}); If you have been desiring to...

How to share your Calendar in Outlook with someone else

(adsbygoogle = window.adsbygoogle || ).push({}); Have you ever been struggling in...

A San Francisco church file a lawsuit against Zoom claiming the company is failing to protect users

An online Bible study session has been victim of Zoom-bombing which led this San Francisco Church to file a lawsuit against Zoom...

Google removed 813 creepware apps from the Android Play Store

(adsbygoogle = window.adsbygoogle || ).push({}); NortonLifeLock and researchers from the New...

Microsoft stopped the release of Windows 10 32-Bit Build for new PC

(adsbygoogle = window.adsbygoogle || ).push({}); There are signals that Microsoft is...