Privacy continues to embarrass the social media giant, as Facebook admits a new flaw in system. Millions of passwords to access the social network have been stored in databases without being encrypted before.
This is the new security scandal in the company of Mark Zuckerberg. Facebook has acknowledged today that these keys were accessible and visible to their employees. They could have access Private information of those affected.
As reported by cyber-security analyst Brian Krebs on his blog Kreb are Security, the security breach has affected between 200 and 600 million users of the social platform, and the passwords would have been stored since 2012.
During a routine check, the Facebook staff realized that they had made a mistake. They had kept passwords for millions of encrypted profiles since January. Above all of those who used the Lite version.
“These passwords were never visible to anyone outside of Facebook and we have not found evidence to date that someone internally abused or inappropriately accessed them,” the company said in a statement.
The social network has stated that the ruling has affected, “hundreds of millions of users of Facebook Lite (a version of the social network used mostly by people in regions with less connectivity), tens of millions of other Facebook users and tens of thousands of Instagram users.”
Although technically no one has misused the passwords, the company still advises users, who want to improve the security of their accounts, change the password for a new one. It should be “strong and complex” and even consider the activation of a system of two factors.
Moreover, the network has indicated that they have already solved the problem and that they will inform all affected users. The company may open another investigation to make sure that its employees did not misuse the data they had access to.