On the first page of the book 'how to create it-security', it stands in big letters: save the never passwords in readable text, but make sure that user data is always encrypted.
Apparently, this is not a book, as Facebook have read.
For here have for years given thousands of people access to be able to read millions of passwords from users in a form that all could read.
It is the recognized security expert Brian Krebs, who has revealed the very embarrassing case.
An internal investigation, as Brian Krebs has multiple sources, shows that the passwords of up to 600 million Facebook users have been unprotected on internal servers, as more than 20,000 Facebook employees have had access to.
if you Facebook today do not believe that the access has been abused, grossly substandard, in the worst case could have exposed users to a leak of their most personal data.
In a blog on the matter recognises the Facebook response, that in January, found the 'some users 'passwords' that was saved in a readable format.
'Some users' are, according to Facebook, several hundred million users of Facebook Lite, which is a service that makes it possible to use Facebook with a very slow data connection.
in addition to tens of millions of other Facebook users and the tens of thousands of Instagram users.
Facebook promises in its lookup, that you now have fixed the problem, and that all affected will be informed directly. The company also stresses that 'no other' than the thousands of employees have had access to the data.