Friday, July 10, 15:59
Home security Robinhood: Stores user passwords in plain text

Robinhood: Stores user passwords in plain text

RobinhoodRobinhood revealed yesterday that some of them codes customers' access were stored in plain text. The event became known when the company sent e-mail to affected customers to alert them.

Robinhood wrote: “On Monday night, we discovered that some credentials users have been stored in our system in plain text ".

The company said that resolved the issue and assured customers that he did research and that he did not find any evidence to prove that a third party had acquired it access in these.

Although no one was found element, Robinhood began to do reset passwords, found exposed, as a precautionary measure.

A representative of the company said that not everyone affected users of Robinhood. On the other hand, he was unable to reveal the exact number. The spokesman said the issue has been resolved and that all passwords are now protected by the Bcrypt algorithm.

Storing passwords in plain text is one of the most important issues security. However, Robinhood is not the first company to deal with this issue. During the year, some of the largest companies, such as the FacebookThe Instagram and Google, they admitted storing their users' passwords in plain text.

In March, the Facebook revealed that the passwords of hundreds of millions of Facebook Lite users and tens of millions of Facebook users were stored in this way.

Despite the April incident, in April, the social networking platform again said it is storing passwords for millions of users Instagram in plain text.

In May, Google admitted that the passwords of a large number of G Suite users were exposed for about 14 years.

From this "company" is not missing Twitter and GitHub.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

Debian 8 “Jessie”: Another version in End-of-life stage

After a long support of Debian 8 "Jessie", the development team of the operating system announced that it stops ...

Conti ransomware: Is it the successor to Ryuk ransomware?

Conti ransomware is a new threat targeting corporate networks. Its advanced capabilities allow it ...

Smartwatch tracker that helps vulnerable people can be hacked

Researchers have uncovered a number of serious security issues in a smartwatch tracker used in applications, including services designed for ...

WhatsApp: QR codes help you communicate with businesses

Facebook's messaging service, WhatsApp, has introduced two new features to help businesses ...

Zoom: Works to correct zero-day vulnerability

Zoom teleconferencing software works to fix a zero-day vulnerability revealed by the security company ...

Hackers demanded $ 390,000 from an American city

The hackers who attacked the computer systems of the American city of Knoxville last month demanded 42,5 bitcoin, ie about $ 393.137 ...

Honeywell: increases the risk of ICS from USB attacks

According to the USB Threat 2020 report of Honeywell Industrial Cybersecurity, which was released this week, there is a significant increase in ...

Expired domains: They can redirect you to malicious sites!

It will certainly have happened to most users, if not all, to try to open a site and in the process discover ...

Google bans ads promoting stalkerware and spyware!

Google will ban ads promoting stalkerware, spyware and other forms of surveillance technology that can be used to monitor ...

KingComposer: Corrects XSS error affecting WordPress websites

A vulnerability cross-site scripting (XSS) affecting 100.000 Wordpress websites has been fixed in the KingComposer plugin. KingComposer is a ...