It seems like Facebook’s inability to secure users’ data has been passed onto its subsidiary companies as well. Now, the Facebook-owned Instagram has also fallen prey to a new security bug.
As reported by The Information, the photo-sharing app had a security flaw which unknowingly led to the revelation of some users’ passwords. The new bug seems to have affected a recently-introduced security tool by Instagram- ‘Download Your Data’ which allows users to download his or her data from the app.
The passwords have been revealed inside the URL of the web browsers in plaintext, showing the same on the Facebook servers. Taking care of the new security bug, Instagram instantly changed the system so that it no longer reveals passwords and deleted all the data saved onto the Facebook servers.
Additionally, Instagram notified the affected users asking them to change their passwords and clear their browsing history as well. Instagram issued a statement stating that the security bug was “discovered internally and affected a very small number of people.“
Even though Instagram claims to have taken steps to solve the security issue, this incident has raised several eyebrows, doubting whether or not the popular photo-sharing app is taking sufficient security measures.