Three cybersecurity researchers discovered close to 19 million plaintext passwords exposed on the public internet by misconfigured instances of Firebase, a Google platform for hosting databases, cloud computing, and app development.

  • pivot_root@lemmy.world
    link
    fedilink
    English
    arrow-up
    18
    arrow-down
    1
    ·
    8 months ago

    The companies that stored plaintext passwords need to be named and shamed. In 2024, there’s absolutely no reason for passwords to not be hashed.

    • LdyMeow@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      3
      ·
      8 months ago

      It’s worse than that….reading the article it’s like they went out of their way to do it poorly. Apparently forbade has built in tools to handle authentication….