Robocalls and Facebook's Plain-Text Password Issue

Jamisha BadeJamisha Bade
4 min read

Table of contents

Cybersecurity Concerns

In today’s digital world, I’ve come to realize just how crucial cybersecurity really is. Our personal data — from bank accounts to private messages — floats through networks every day, and we rarely stop to think about how exposed we truly are.

Cybersecurity is a critical and sensitive topic in today’s digital world. As the use of technology continues to grow exponentially, concerns about user privacy and data protection are growing just as rapidly. This is especially true as powerful fields like artificial intelligence and quantum computing continue to evolve, adding new complexities and vulnerabilities that we must address.

It is not uncommon to encounter bugs, technical issues or malicious attacks that can potentially expose our sensitive digital data. Because our personal information is at stake, it is crucial to continually improve cybersecurity practices to enhance and ensure robust protection for users worldwide.

We will be going through two of the major tech controversies you might have heard about:

  1. Robocalls

  2. Facebook’s plain-text password incident

These stories reveal how technology, often unknowingly, can put our personal information—and even our peace of mind—at risk.

What Are Robocalls?

Robocalls are phone calls made by automated dialing systems instead of a real person. Often, you’ll answer your phone and hear a recorded message or a robot’s voice. This happens without a real person actually dialing your number — it's all automated.

How Robocalls Work

Robocallers use a system called auto-dialers, which can call thousands of phone numbers in a matter of minutes. Often, these messages are pre-recorded or extracted by a text-to-speech algorithm. Sometimes, robocallers will even spoof their phone number, making it look much more trustworthy or local.

Why Robocalls Are a Concern

Robocalls aren’t just a nuisance — sometimes they’re dangerous. Some robocallers try to scam people by asking for payments, collecting bank account information, or tricking you into sharing your social security number. Because there are so many of them, it's hard for phone companies and regulators to keep up. Unfortunately, many people who are unaware of these scams fall victim, and even those who are well aware sometimes get caught off guard.

How We Combat Robocalls

  • TCPA (Telephone Consumer Protection Act): This law sets protocols for automated dialing and penalties for companies that break the rules.

  • STIR/SHAKEN Framework: This is a way phone companies can identify and block suspicious or fake phone numbers.

  • Call-Blocking Apps: Apps like Hiya, RoboShield, or Nomorobo can filter out robocalls before you even answer the phone.

    What Is Facebook’s Plain-Text Password Controversy?

In March 2019, Facebook made a shocking disclosure: it had been storing between 200–600 million users’ passwords in plain text instead of securing them with proper password hashing (encryption). This meant that up to 20,000 Facebook employees had access to view those plain-text passwords.

What does this mean?

Usually, companies hash and encrypt passwords — turning them into a mess of letters and numbers — to keep them safe. But in this case, due to potential bugs or poor implementation, the password remained plain text in their databases. This made it much less difficult for someone with insider access to view or compromise a password.

Why This Is a Security Issue

If a hacker or rogue employee accessed these plain-text password files, they could reuse the password elsewhere — especially if people reuse their password for multiple accounts. This could put many other online accounts at risk. This raises a huge concern about user’s privacy.

How Facebook Fixed It

When Facebook discovered the bug, it investigated the incident and forced password resets for many users to make sure their accounts stayed safe. It also implemented additional safeguards and audits to make sure password storage follows industry standards in the future.

Conclusion

Technology, while incredibly beneficial, can sometimes fail us, as seen with issues like robocalls and plain-text password storage. These incidents shows the importance of vigilance and the need for companies to take swift corrective actions. We are all vulnerable to cyberthreats, making it essential to stay informed, handle our information with care, and implement robust security measures to protect ourselves. Thus, it is important to spread awareness, increase protocols and improve cybersecurity practices.

0
Subscribe to my newsletter

Read articles from Jamisha Bade directly inside your inbox. Subscribe to the newsletter, and don't miss out.

robocallsprotocalls#cybersecurityBugs and Errors#cyberawarenessCryptocurrencyencryptionencryption algorithmstechnology

Written by

Jamisha Bade
Jamisha Bade