76.000 members' email addresses Mozilla Developer Network (MDN) and 4.000 passwords have become available to the public due to poor managementof the company.
The Mozilla Foundation issued a warning for the incident, indicating that they were informed by a web developer around June 23 that a data deficiency deficiency caused the disclosure of sensitive information.
It seems that the error continued for a period of 30 days, and when Mozilla was able to locate the point of the leak, it immediately turned off the process to stop data leakage.
"Although we did not detect any malicious activity on this server, we can not be sure that there was no such access," the company said in a blog post via Stormy Peters, Director of Developers.
Οι κωδικοί πρόσβασης ήταν κρυπτογραφημένοι και με salted hashes, πράγμα που σημαίνει ότι δεν μπορούν να χρησιμοποιηθούν για είσοδο στην ιστοσελίδα του Developer Network Mozilla, από κακόβουλους users. However, email addresses could be used to send spam.
All users affected by the incident have been notified of the accidental leakage to change their passwords.
