Has this blog be of help to you?

Wednesday, 6 August 2014

Mozilla leaks 76,000 developers' email addresses

I'm really perplexed,but not disappointed to read this.If developers e-mail were hacked via web browser then what happen to a lay man on the street who visit public cyber centre to check their e-mail.I would suggest to you reading this piece to develop the habit of changing your password often.It does not matter how strong your passwords are.
Members of the Mozilla Developer Network have had their email addresses accidentally exposed
 Mozilla, the free software community best known for producing the Firefox web browser, has admitted to accidentally leaking the email addresses of 76,000 developers on its network, along with around 4,000 encrypted passwords.

The leak came to light last month, when one of Mozilla's web developers discovered that a 'data sanitisation process' of the Mozilla Developer Network (MDN) database had been failing. Data sanitisation removes all personally-identifiable information in order to protect users' privacy.

"As soon as we learned of it, the database dump file was removed from the server immediately, and the process that generates the dump was disabled to prevent further disclosure," said Mozilla's developer and security heads Stormy Peters and Joe Stevensen in blog post.
"While we have not been able to detect malicious activity on that server, we cannot be sure there wasn't any such access."

The leak is embarrassing for Mozilla, given the emphasis it places on privacy and security. Last year, for example, Mozilla demanded a British surveillance software company stop using its browser as a front for governments to collect data covertly from citizens.

The organisation has sent notices to the users who were affected, advising those who had their passwords disclosed to change their passwords, and any ones passwords they may be using.

"In addition to notifying users and recommending short term fixes, we’re also taking a look at the processes and principles that are in place that may be made better to reduce the likelihood of something like this happening again," Mozilla said.

This is not the first time Mozilla has been involved in a security breach. In March 2010, the German government advised people to use an alternative web browser, after a Firefox security loophole came to light that could allow cyber criminals to infect computers with malware.

Last year, the Tor anonymous browsing service also blamed a vulnerability in the Mozilla Firefox web browser for a cyber attack that wiped out some of the servers it uses to provide its darknet service.

No comments: