Three cybersecurity researchers discovered close to 19 million plaintext passwords exposed on the public internet by misconfigured instances of Firebase, a Google platform for hosting databases, cloud computing, and app development.
You must log in or # to comment.
The companies that stored plaintext passwords need to be named and shamed. In 2024, there’s absolutely no reason for passwords to not be hashed.
Agreed. Ten years ago that wouldn’t be acceptable.
It’s worse than that….reading the article it’s like they went out of their way to do it poorly. Apparently forbade has built in tools to handle authentication….