I’m not sure if I should laugh or cry seeing this. Seriously. Or this, for that matter; Facebook left millions of passwords readable by employees. From the article:
By storing passwords in readable plain text, Facebook violated fundamental computer-security practices. Those call for organizations and websites to save passwords in a scrambled form that makes it almost impossible to recover the original text.
But it gets better because fuck me, I guess:
Facebook said there is no evidence its employees abused access to this data. But thousands of employees could have searched them. The company said the passwords were stored on internal company servers, where no outsiders could access them. Even so, some privacy experts suggested that users change their Facebook passwords.
The incident reveals yet another huge and basic oversight at a company that insists it is a responsible guardian for the personal data of its 2.3 billion users worldwide.
Probably going to change my password anyway, just to be safe.
Facebook said it discovered the problem in January. But security researcher Brian Krebs wrote that in some cases the passwords had been stored in plain text since 2012. Facebook Lite launched in 2015 and Facebook bought Instagram in 2012.
The problem, according to Facebook, wasn’t due to a single bug. During a routine review in January, it say, it found that the plain text passwords were unintentionally captured and stored in its internal storage systems. This happened in a variety of circumstances — for example, when an app crashed and the resulting crash log included a captured password.
But Alex Holden, the founder of Hold Security, said Facebook’s explanation is not an excuse for sloppy security practices that allowed so many passwords to be exposed internally.
Recorded Future’s Barysevich said he could not recall any major company caught leaving so many passwords exposed. He said he’s seen a number of instances where much smaller organizations made such information readily available — not just to programmers but also to customer support teams.
Tell me again why I have a fucking Facebook account?! Because with each passing day, I question whether it’s a good idea! I’m among those who had their information compromised by Cambridge Analytica. I’ve had to go through a day long ban after I was harassed by another user. Prime is on his second thirty day ban because he was being harassed. Then shit like this keeps coming out and I have to wonder why I haven’t killed my account yet.
I’m just waiting for the day when Facebook collapses and Fuckerberg disappears like the fart in the breeze he’s always been. It can’t happen soon enough.