Facebook Says Instagram Password Breach Larger Than Initially Thought

By Denise Petski
April 18, 2019 1:52pm

Facebook now says millions of Instagram users’ passwords were accidentally stored in a readable format on its servers, not tens of thousands as it initially thought.

Facebook revealed the new information in an updated blog post Thursday morning.

“Since this post was published, we discovered additional logs of Instagram passwords being stored in a readable format,” Facebook said in its post. “We now estimate that this issue impacted millions of Instagram users. We will be notifying these users as we did the others. Our investigation has determined that these stored passwords were not internally abused or improperly accessed.”

In its March 21 blog post, Facebook said it found the user password issue as part of a routine security review in January, but stressed that the passwords were never visible to anyone outside of Facebook and that they had found no evidence that anyone internally abused or improperly accessed the passwords. “We have fixed these issues and as a precaution we will be notifying everyone whose passwords we have found were stored in this way,” Facebook said.

•••••