Mozilla site exposed encrypted passwords

addons.mozilla.org disclosure 12.27.10 – 10:35pm On December 17th, Mozilla was notified by a security researcher that a partial database of addons.mozilla.org user accounts was mistakenly left on a Mozilla public server. The security researcher reported the issue to us via our web bounty program. We were able to account for every download of the database. […]

Continue Reading