The engineers of the institution Mozilla εργάζονται σε ένα σύστημα ειδοποιήσεων για τον Firefox, which will display security warnings to users visiting websites that have suffered data breaches.
The alert system will use the data contained in the Have I Been Pwned, a website that includes all known data breaches, and has a search for users who want to see if there are personal information (name, password) on those violations.
Jobs for this project have just begun, and the source code for displaying these warnings is not even included in the basic Firefox code but works separately as an add-on.
"[Breach Alerts] is an addon I'm going to use to prototype an upcoming Firefox feature that alerts users when their credentials may be involved in a data breach," said Mozilla engineer Nihanth Subramanya. description of the add-on.
The code for this plugin is available at GitHub και όποιος επιθυμεί μπορεί να κάνει ένα compile για να το περάσει στον Firefox. Να αναφέρουμε ότι προς το παρόν υποστηρίζεται μόνο ο Firefox Developer Edition.
The plugin is still in the early stages of development and warnings are currently triggered when the user visits a website that is included in its public data breach list Have I Been Pwned.
This new warning system will surely shake off the companies that have been tampered with. Have I Been Pwned can offer the same service, but it's not the same. It's very different to display this information from a browser that uses millions of users and shows violations that have happened years ago.
"I'm working with Mozilla on this," said Troy Hunt, the researcher behind Have I Been Pwned.
"We're looking at a few different models of how it might work, but the main achievement is that we intend to display warnings about data that has been directly exposed by the browser," says Hunt.
One thing is for sure that the Mozilla Foundation should pay special attention to how it will display the warnings. It should focus less on the security incident and put more emphasis on encouraging users to change their credentials on infringing websites.
See the add-on Breach Alerts