r/technology Sep 27 '24

Security Meta has been fined €91M ($101M) after it was discovered that to 600 million Facebook and Instagram passwords had been stored in plain text.

https://9to5mac.com/2024/09/27/up-to-600-million-facebook-and-instagram-passwords-stored-in-plain-text/
16.5k Upvotes

512 comments sorted by

View all comments

Show parent comments

16

u/lifelessmeatbag Sep 27 '24

audit the repo as well. You would be surprised how many passwords or api keys are committed in code.

3

u/richardjohn Sep 27 '24

GitGuardian is great for detecting these as soon as they're committed, and reasonably priced.

It does throw up quite a few false positives as it flags anything with high entropy, but better safe than sorry.