Monday, November 4, 2024
HomeComputer SecurityFacebook Stored Millions of Instagram Users Password in Plain Text

Facebook Stored Millions of Instagram Users Password in Plain Text

Published on

Malware protection

Facebook revealed last month that they stored tens of millions of Facebook password in plain text including thousand of the Instagram password instead of masking it as a human-readable format.

Now its worse than earlier report, and the number has been revised in the Facebook new update that states they discovered additional logs that contain million of Instagram passwords stored in plain text.

Facebook continuously facing the security failure incidents since last year and this case poorly developed an application that manages passwords let Facebook stored these passwords in a human-readable format.

- Advertisement - SIEM as a Service

According to Krebs investigation during the previous Facebook report, there are nearly 200 million to 600 million users password may have been stored in human-readable plain text format.

Also, access logs showed some 2,000 engineers or developers made approximately nine million internal queries for data elements that contained plain text user passwords.

New Facebook update states that “Since this post was published, we discovered additional logs of Instagram passwords being stored in a readable format. We now estimate that this issue impacted millions of Instagram users. We will be notifying these users as we did the others.).”

During this incident, none of the Instagram users data improperly accessed anyhow Instagram and Facebook users recommended changing their password.

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Evasive Panda Attacking Cloud Services To Steal Data Using New Toolkit

The Evasive Panda group deployed a new C# framework named CloudScout to target a...

Massive Midnight Blizzard Phishing Attack Using Weaponized RDP Files

Researchers warn of ongoing spear-phishing attacks by Russian threat actor Midnight Blizzard targeting individuals...

Sophisticated Phishing Attack Targeting Ukraine Military Sectors

The Ukrainian Cyber Emergency Response Team discovered a targeted phishing campaign launched by UAC-0215...

Chinese Hackers Attacking Microsoft Customers With Sophisticated Password Spray Attacks

Researchers have identified a network of compromised devices, CovertNetwork-1658, used by Chinese threat actors...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Evasive Panda Attacking Cloud Services To Steal Data Using New Toolkit

The Evasive Panda group deployed a new C# framework named CloudScout to target a...

Massive Midnight Blizzard Phishing Attack Using Weaponized RDP Files

Researchers warn of ongoing spear-phishing attacks by Russian threat actor Midnight Blizzard targeting individuals...

Sophisticated Phishing Attack Targeting Ukraine Military Sectors

The Ukrainian Cyber Emergency Response Team discovered a targeted phishing campaign launched by UAC-0215...