Misconfigured Firebase instances leaked 19 million plaintext passwords (www.bleepingcomputer.com)

submitted 6 months ago by BrikoX@lemmy.zip to c/databreaches@lemmy.zip

4 comments fedilink hide all child comments

Three cybersecurity researchers discovered close to 19 million plaintext passwords exposed on the public internet by misconfigured instances of Firebase, a Google platform for hosting databases, cloud computing, and app development.

top 4 comments

sorted by: hot top controversial new old

[-] Fermiverse@feddit.de 9 points 6 months ago

When plain text passwords are allowed to even entering a database then there was something totally wrong in the first place.

[-] RootBeerGuy@discuss.tchncs.de 5 points 6 months ago

Aw damn, was 12345 in it? That's my code on my luggage...

[-] Flyberius@hexbear.net 1 points 6 months ago

I'm a bad programmer, but even I wouldn't trust my firebase with storing credentials. Those firebase rules are not robust enough. The hackiest thing ever

[-] RamblingPanda@lemmynsfw.com 1 points 6 months ago

I like it when there's a clear answer to the question "why hire you? The nephew of my gardener can program that for a tenth of your price!"

I don't know, why would you?

this post was submitted on 20 Mar 2024

45 points (97.9% liked)

Data Breaches

980 readers

1 users here now

Information about data breaches, data leaks, ransomware attacks, and other related stories.

Companion communities

!cybersecurity@sh.itjust.works - centered on the cybersecurity and information security profession.

Icon attribution

founded 1 year ago

MODERATORS

BrikoX@lemmy.zip