March 19, 2024 at 07:30PM Security researchers discovered nearly 19 million plaintext passwords exposed due to misconfigured Firebase instances, with millions of sensitive user records including emails, names, phone numbers, and billing information. The trio of researchers scanned over five million domains and found 916 websites with inadequate security rules. They alerted impacted companies and … Read more
March 19, 2024 at 06:18AM Google Firebase misconfiguration led to the leak of more than 125 million user records, including plaintext passwords. It began with the hacking of the Chattr AI hiring system, exposing names, phone numbers, emails, and sensitive details. Further exploration found 900 websites exposing data on a massive scale, impacting millions of … Read more
March 18, 2024 at 05:38PM Over 900 websites using Google’s Firebase have been misconfigured, exposing sensitive data including 125 million user records. The issue stems from insecure Firebase implementations and lack of secure configuration. Researchers found 85 million names, 106 million email addresses, and 20 million passwords exposed. Despite notifications, only 24% of site owners … Read more