76.000 members' email addresses Mozilla Developer Network (MDN) and 4.000 passwords have become publicly available due to poor management of the company.
The Mozilla Foundation issued a warning for the incident, indicating that they were informed by a web developer around June 23 that a data deficiency deficiency caused the disclosure of sensitive information.
It appears that the bug persisted for a period of 30 days, and when Mozilla managed to locate the leak, it immediately disabled the procedure, in order to stop data leakage.
"Although we did not detect any malicious activity on this server, we can not be sure that there was no such access," the company said in a blog post via Stormy Peters, Director of Developers.
The passwords were encrypted and salted hashes, meaning they cannot be used to log into the Mozilla Developer Network website by malicious users. However, email addresses could be used to Mission spam.
All users affected by the incident have been notified of the accidental leakage to change their passwords.