It is 2019, how could FB store passwords in plain text?

( my opinions are my own and not my employer)

I just read this article:

NY Times: Facebook Did Not Securely Store Passwords. Here’s What You Need to Know. https://nyti.ms/2YdyAKj

As an engineer, I don’t understand how it could happen to a company like Facebook.

  • They have engineers and security folks who audit designs and code. They know that it has been insecured for many years.
  • Storing password in plain text is a huge NO, NO in CS 101
  • It is totally reckless of a company with so many high paid people. It is as if a bank said all their safe deposit boxes can be opened by any employee
  • Why would a young engineer work for FB when this shows that you won’t learn to be a great engineer in this engineering org?
Tony Tam

Senior Principal Engineer @ Splunk, ImpactfulEngineer.org & SFBadminton.org