Network Facebook more than million users all over the world and as you can imagine, it must be ensure the security of users personal information is extremely important to prevent the size of it. So you may not feel overjoyed to hear that the company has stores hundreds of millions of users ‘ passwords in plain text ( Plain Text ) for many years. It was possible to search for passwords of this before from thousands of employees of Facebook, according to KrebsOnSecurity. Facebook says that the investigation is still ongoing and has not found any indications yet on the abuse of the staff for their ability to access the data.
So how did this happen? The report refers to a series of failures to security, where officers developed the application that recorded the passwords non-encrypted users and stored in a normal text file on a Servers internal. It should be noted that the information was obtained from senior staff in the company, Facebook, is familiar with the investigation ongoing.
The source added that the investigation indicates that between 200 million and 600 million users might have stored their passwords in plain text. It was possible to search by more than 20 thousand staff members inside of Facebook. It is said that Facebook is still trying to figure out the number of passwords that were exposed and for how long. Records indicate access to about 2000 engineer or developer and have made nearly nine million request internal data that contain users ‘ passwords recorded in plain text.
Tell Scott Renfro, a software engineer at Facebook Inc, the cable company is unwilling to give specific figures about the number of affected users and employees who have access to the data. Plans to Facebook to alert the affected users, but he added that there would be no need to reset the password.
On this subject, Mr. Scott Renfo by saying : ” in this position, we found that these passwords have been recorded inadvertently, but there was no danger actually comes from this. “ This does not negate the point that many of the affected users will not feel thrilled because their passwords had been left in an unsafe way.