March 22, 2019
Facebook Password Leak... What to Do?
We learned yesterday that Facebook kept hundreds of millions of unencrypted passwords in files for years (source: https://krebsonsecurity.com/2019/03/facebook-stored-hundreds-of-millions-of-user-passwords-in-plain-text-for-years/). This is alarming news for any business. However, since many companies offer single sign-on using a Facebook account, the scale of the problem reaches unprecedented proportions. [...]
We learned yesterday that Facebook kept hundreds of millions of unencrypted passwords in files for years (source: https://krebsonsecurity.com/2019/03/facebook-stored-hundreds-of-millions-of-user-passwords-in-plain-text-for-years/ ). This is alarming news for any business. However, since many companies offer single sign-on using a Facebook account, the scale of the problem reaches unprecedented proportions.
As if it weren't bad enough that your personal information is potentially exposed, many other sites and companies use your Facebook login as an identification solution, like when you see a "Log in with your Facebook account" button.
Short of closing your Facebook account, you should change your password. Also review the partners and applications that have access to your account. On the blue bar at the top of the Facebook page, on the far right, you'll find a down arrow. Click it and go to Settings.
In the Privacy section, change your password.
In the Apps and Websites section, review the sites and applications that have access to your account.
