Facebook exposed millions of Instagram passwords

SAN FRANCISCO: A day after admitting it "unintentionally" uploaded emails of nearly 1.5 million of new users, Facebook has now revealed that millions of Instagram passwords were stored on its servers in a readable format.

Facebook exposed millions of Instagram passwords

San Francisco, April 19

A day after admitting it "unintentionally" uploaded emails of nearly 1.5 million of new users, Facebook has now revealed that millions of Instagram passwords were stored on its servers in a readable format.

Last month, Facebook said that it fixed a security issue wherein millions of its users' passwords were stored in plain text and "readable" format for years and were searchable by thousands of its employees.

The company on Thursday revealed that millions of passwords belonging to the users of its photo-sharing service Instagram were also exposed.

"We discovered additional logs of Instagram passwords being stored in a readable format. We now estimate that this issue impacted millions of Instagram users," said the social networking giant in an update.

"We will be notifying these users as we did the others. Our investigation has determined that these stored passwords were not internally abused or improperly accessed." Facebook had found that some user passwords were being stored in a readable format within our internal data storage systems.

"This caught our attention because our login systems are designed to mask passwords using techniques that make them unreadable. We have fixed these issues and as a precaution will be notifying everyone whose passwords we found stored this way," wrote Pedro Canahuati, Vice President, Engineering, Security and Privacy at Facebook.

A Facebook spokesperson admitted late Wednesday that emails of 1.5 million people were harvested since May 2016 to help build Facebook's web of social connections and recommend other users to add as friends.

The revelation came to light after a security researcher noticed that "Facebook was asking some users to enter their email passwords when they signed up for new accounts to verify their identities".

The social network said the contacts weren't shared with anyone and were being deleted.

In March, a report by Krebs On Security claimed that around 200-600 million Facebook users may have had their account passwords stored in plain text and searchable by over 20,000 Facebook employees.

IANS

Don't Miss

When India ruled world hockey

When India ruled world hockey

NASA resumes human spaceflight with historic SpaceX launch

NASA resumes human spaceflight with historic SpaceX launch

Once upon a time in Leh, 40 years ago

Once upon a time in Leh, 40 years ago

Embrace changed world

Embrace changed world

Clockwork precision, Army style

Clockwork precision, Army style

Top Stories

Delhi govt seeks Rs 5,000 cr from Centre to pay employees

Delhi govt seeks Rs 5,000 cr from Centre to pay employees

GST collection has dropped to Rs 500 cr per month, says Dy C...

Amid border row with India, Nepal govt tables Bill in Parliament to amend Constitution for new map

Amid border row with India, Nepal govt tables Bill in Parliament to amend Constitution for new map

The map lays claim over strategically key areas of Lipulekh,...

Mann ki Baat: PM Modi stresses on keeping up the vigil against coronavirus

Mann ki Baat: PM Modi stresses on keeping up the vigil against coronavirus

'The victory over corona will depend on our innovations'

200 special trains start operations from June 1

200 special trains start operations from June 1

The service is in addition to Shramik Special trains and 30 ...

India registers highest single-day spike of 8,380 COVID-19 cases

India registers highest single-day spike of 8,380 COVID-19 cases

Death toll climbs to 5,164, cases rise to 1,82,143

Cities

View All