In October 2017, the Washington Post reported that Facebook had “encouraged hackers to steal passwords from as many as 50 million Facebook users” by introducing “password managers” that would allow users to log into their Facebook accounts and then share them with other Facebook users.
Facebook has since rolled out “passive” password managers that can be set to automatically log in to a user’s account and automatically save the password to a safe place.
The company has since removed the “pass-protect” feature that it announced in October 2017.
“If you don’t want to use your Facebook password manager, you can disable it in your settings,” Facebook said in October 2018.
“You can disable the password manager and its pass-protect feature in your Facebook settings.”
Facebook has also said that “we take this issue very seriously and will continue to work with our partners to help them resolve this issue as quickly as possible.”
Facebook CEO Mark Zuckerberg has acknowledged that the company’s password managers were flawed, but said that they were “an example of how technology can make our lives easier, safer, and more secure.”