- cross-posted to:
- pulse_of_truth@infosec.pub
- cross-posted to:
- pulse_of_truth@infosec.pub
Three cybersecurity researchers discovered close to 19 million plaintext passwords exposed on the public internet by misconfigured instances of Firebase, a Google platform for hosting databases, cloud computing, and app development.
I'm a bad programmer, but even I wouldn't trust my firebase with storing credentials. Those firebase rules are not robust enough. The hackiest thing ever