Facebook Fixes a Huge Password Blunder
In a big oops moment, Facebook discovered it had been keeping millions of users’ passwords in plain text—just like leaving the pantry open for anyone to grab a snack. They’re now saying it’s all sorted out.
So What Went Wrong?
- About 20,000 employees had the ticket to view these passwords, and the issue dates back to 2012.
- No one outside of Facebook could see the passwords, and the company claims there’s no sign of misuse by insiders.
- Internal probes suggest a staggering 200‑600 million users might have had their credentials exposed.
- Facebook’s knack for being thorough caught it during a routine January security check.
- Mostly affected were Facebook Lite users, the lightweight version used in spots with spotty internet.
Why Facebook Sets an Alarm
Because employees inadvertently built apps that logged passwords without hashing them, providing a free buffet of unencrypted login details. The team is now digging into the root cause of this mess.
Are Affected Users Saying Adios?
“We’ll inform a ton of users: hundreds of millions of Facebook Lite peeps, tens of millions more across Facebook, and a handful of Instagram folks,” the company told us. Sounds like a wake‑up call for everyone.
Stay tuned for more updates as Facebook tightens up its security guardrails. They’re hoping to put nerves at ease by making sure no one else has a spare key to the password vault.
