Meta Slapped with a Hefty Fine for 2019 Password Blunder

Posted on by carotechgirl
Facebook Password Blunder

Oops, They Did It Again! Meta’s Password Mishap Costs a Pretty Penny

In the world of tech giants, even a minor slip-up can have massive consequences. Meta, the parent company of Facebook, recently learned this lesson the hard way. The Irish Data Protection Commission (DPC), Meta’s primary privacy regulator in the European Union, has imposed a hefty fine of €91 million (approximately $102 million) on the company for a security lapse that occurred back in 2019 [1, 2, 3, 4].

The Password Predicament

So, what exactly happened? It turns out that Meta inadvertently stored some user passwords in plain text within its internal systems [1, 2, 3, 4]. In simpler terms, this means the passwords were not encrypted, making them potentially accessible to Meta employees [4]. While there’s no evidence of any misuse of these passwords, the incident raised serious concerns about data security and privacy [2, 3, 4].

GDPR: The Watchdog with Teeth

The DPC’s investigation concluded that Meta’s handling of passwords violated several obligations under the General Data Protection Regulation (GDPR), a stringent data privacy law in the EU [3]. The GDPR mandates that companies implement appropriate security measures to protect personal data, and Meta’s oversight in this case clearly fell short [3].

Meta’s Mea Culpa

Meta has acknowledged the issue and stated that it took immediate action to rectify the error upon discovery [2, 3, 4]. The company also claims that there’s no evidence to suggest that the exposed passwords were misused [2]. However, the DPC’s decision underscores the importance of robust data protection practices, especially for companies handling sensitive user information.

The Price of Privacy

This isn’t the first time Meta has faced the wrath of regulators for privacy violations. The company has been hit with several substantial fines in recent years, including a whopping €1.2 billion penalty for transferring data to the US in violation of the GDPR [4]. These incidents highlight the growing scrutiny of big tech companies and their data handling practices.

Key Takeaway

The Meta fine serves as a stark reminder that even tech behemoths aren’t immune to security lapses. It also emphasizes the critical need for companies to prioritize data protection and comply with privacy regulations. As users, we entrust these platforms with our personal information, and it’s their responsibility to safeguard it.

Resources

[1] https://www.engadget.com/big-tech/meta-fined-102-million-for-storing-passwords-in-plain-text-110049679.html

[2] https://www.cnet.com/tech/services-and-software/meta-fined-102m-for-storing-facebook-passwords-in-plain-text

[3] https://cyberscoop.com/meta-fined-passwords-plaintext-ireland-millions-users/

[4] https://abcnews.go.com/Technology/wireStory/meta-hit-102-million-privacy-fine-european-union-114272429

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Posts

Microsoft Recall Security Concerns

The Plot Thickens: Microsoft Recall’s Uninstall Drama and Lingering Security Concerns

The saga of Microsoft’s Recall feature has taken another twist, leaving users both intrigued and slightly bewildered. Initially met with privacy concerns, Recall, which creates an “explorable timeline” of your PC activity, was delayed and slated to become an opt-in feature. However, recent developments have muddied the waters. When news first broke about Recall in […]

peeping tom with ai glasses

The Ethics of AI Glasses: Peeping Toms or Personal Assistants?

The future is looking bright, or rather, it’s looking through a pair of AI-powered glasses. These aren’t your grandpa’s bifocals; we’re talking real-time translation, facial recognition, and maybe even a heads-up display of your next Tinder match’s dating profile (creepy or cool? You decide). But as we step into this brave new world of wearable […]