Mozilla Exposed 44,000 Passwords

[Guest]

Mozilla confirmed that it accidentally forgot to remove a "partial database" of addon.mozill.org user accounts on a public server of the organization.

Mozilla Exposed 44,000 Passwords : Read more

 

[HavoCnMe]

That is great to know....the IT Team must be a bunch people hired because they know someone, not what they know. I really wish that this type of info was actually secure. If you guys need someone to teach you security you can look for the A+ Book, at least it has common practices. Then you can move to Net+, followed by Security+. Knowledge is power, idiots. Keep up the great work.

 

[Platypus]

It seemed like the personal information about Honda's accounts for 2.2 million people was more newsworthy than the 44,000 passwords from an old database of inactive users for Mozilla. I like how it was just thrown in there as a "P.S."

 

[Silmarunya]

[citation][nom]Platypus[/nom]It seemed like the personal information about Honda's accounts for 2.2 million people was more newsworthy than the 44,000 passwords from an old database of inactive users for Mozilla. I like how it was just thrown in there as a "P.S."[/citation]

True. On the other hand, Mozilla is a software company. I typically find it more embarrassing when a cook can't grill a steak properly than an IT guy who fails to do the same.

Besides, Mozilla has often made fun of IE's safety record. Of course that's completely justifiable, but losing passwords makes that sound a bit odd, doesn't it?

 

[davewolfgang]

The one thing that no amount of security can stop, is the help of an inside source. Me thinks there's more going on to both of these than the short story says.

 

[CoryInJapan]

FEAR THE FUTURE

 

[aaron88_7]

God forbid somebody else sign into my Mozilla account and leave favorable reviews for apps I hate.

The hacked account data from Honda, on the other hand, could be far more dangerous for consumers effected by the lapse in security.

 

[JOSHSKORN]

I don't know what's worse. THIS, or using Google Chrome. I was shocked when I looked at my password manager for Google Chrome to see all of my passwords in PLAIN TEXT!!! Translation, if you save your passwords when it prompts you to in Google Chrome, then let a friend use your computer, if he'she launches Google Chrome, then they can get to your password, easily!

 

[davidjay]

only encrypted passwords should be stored. password recovery via email validation and re-creation and/or hints and clues; simple and it works.
David J.
http/www.goodpassword.com
Best Online Password Generators on the Net

 

[WheelsOfConfusion]

[citation][nom]davewolfgang[/nom]The one thing that no amount of security can stop, is the help of an inside source. Me thinks there's more going on to both of these than the short story says.[/citation]
There's no real reason for somebody to leak the old, inactive account login info. It's not like Google, using your personally identifiable data to serve you ads, had all their wealth of info leaked. All that was gotten was a list of email addresses and passwords for users of the Mozilla addons.org site, like leaving reviews or submitting addons. Even for the people affected it sounds pretty innocuous to me.

 

[yao]

firefox addon download doesn't require registration.

 

[lavitz1125]

Holy crap, we need a new line of defence for bots.

 

[youssef 2010]

nice work guys keep it up.

 

[Dadeeo]

It's hilarious that Tom's is highlighting a story on the lack of security AT Mozilla, and they can't even keep spammers from leaving ad's in the comments area....

 

[mayankleoboy1]

after google, its mozillas turn now

 

[eddieroolz]

Oh this is too bad for Mozilla. You'd think they'll be more serious about security.

 

[dsolom3]

[citation][nom]JOSHSKORN[/nom]I don't know what's worse. THIS, or using Google Chrome. I was shocked when I looked at my password manager for Google Chrome to see all of my passwords in PLAIN TEXT!!! Translation, if you save your passwords when it prompts you to in Google Chrome, then let a friend use your computer, if he'she launches Google Chrome, then they can get to your password, easily![/citation]

In Firefox, go to Edit->Preferences (or Tools->Options (not sure...) in Windows, and don't even think about asking about Mac!), hit on "Security" tab, click the "Saved Passwords" button, hit "Show Passwords" - voila!