If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. |
|
|
Thread Tools | Rate Thread | Display Modes |
#1
|
|||
|
|||
More reasons to store NOTHING on the Internet: Facebook exposes hundreds of millions of user login/passwords IN CLEARTEXT since 2012!
New York Times:
o Facebook Did Not Securely Store Passwords. Heres What You Need to Know https://www.nytimes.com/2019/03/21/technology/personaltech/facebook-passwords.html *Yet another reason to engage your brain & store NOTHING on the Internet.* From two to six hundred million username/passwords were stored in the clear o (no hash, no salt, no nothing). o All in plain vanilla text files since 2012! o Facebook Stored Hundreds of Millions of User Passwords in Plain Text for Years https://krebsonsecurity.com/2019/03/facebook-stored-hundreds-of-millions-of-user-passwords-in-plain-text-for-years/ Facebook says nobody "improperly" accessed the files, even as there were apparently over 9 million internal queries by over 2,000 Facebook engineers on the data (according to blogger Brian Krebs). https://www.npr.org/2019/03/21/705588364/facebook-stored-millions-of-user-passwords-in-plain-readable-text Apparently the security gaff affects o Facebook users o Facebook lite users o Instagram users etc. Bear in mind GitHub did the same thing recently: o GitHub says bug exposed some plaintext passwords https://www.zdnet.com/article/github-says-bug-exposed-account-passwords/ As did Twitter: o Twitter to All Users: Change Your Password Now! https://krebsonsecurity.com/2018/05/twitter-to-all-users-change-your-password-now/ *Yet another reason to engage your brain & store NOTHING on the Internet.* |
Thread Tools | |
Display Modes | Rate This Thread |
|
|