Security analystBrian Krebs discovered Facebook stored hundreds of millions of user passwords in plain text for years. According to the BBC, Facebook said it had discovered the issue in January 2019 as part of a routine security review. Facebook indicated it would "'notify hundreds of millions of Facebook Lite users, tens of millions of other Facebook users, and tens of thousands of Instagram users'.