Meta pays the price for storing hundreds of millions of passwords in plaintext
Company failed to follow one of the most sacrosanct rules for password storage.
Hasnain says:
Always interesting watching something you worked on - very tangentially (I did only a smaaaaallll slice of work here) - hit the news later. I didn’t realize it spawned an investigation, but it makes sense.
“Officials in Ireland have fined Meta $101 million for storing hundreds of millions of user passwords in plaintext and making them broadly available to company employees.
Meta disclosed the lapse in early 2019. The company said that apps for connecting to various Meta-owned social networks had logged user passwords in plaintext and stored them in a database that had been searched by roughly 2,000 company engineers, who collectively queried the stash more than 9 million times.”
Posted on 2024-09-29T02:15:59+0000