{"id":63030,"date":"2019-11-21T00:00:00","date_gmt":"2019-11-21T00:00:00","guid":{"rendered":"http:\/\/blog.mozilla.org\/foxtail\/2019\/11\/21\/disney-password\/"},"modified":"2021-02-03T02:42:15","modified_gmt":"2021-02-03T02:42:15","slug":"disney-password","status":"publish","type":"post","link":"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/","title":{"rendered":"Princesses make terrible passwords for Disney+ and every other account"},"content":{"rendered":"

When the Disney+ streaming service rolled out, millions of people flocked to set up accounts. And within a week, thousands of poor unfortunate souls<\/a> reported that their Disney passwords were hacked. According to media reports, some Disney+ account holders have lost their account access while hackers have sold their logins online.<\/p>\n

BBC News: Disney+ fans without answers after thousands hacked<\/a><\/p>\n

USA Today: Did Disney+ get hacked?<\/a><\/p>\n

Fortune: Disney+ Might Have a Notable Hacker Problem (Already)<\/a><\/p>\n

ZDNet: Thousands of hacked Disney+ accounts are already for sale on hacking forums<\/a><\/p>\n

How the Disney+ account situation happened isn\u2019t totally clear. Disney says that its system is secure and has not been breached. That does point to one unfortunately well-worn possibility: weak, reused passwords.<\/p>\n

If you used the same password for an account that was previously breached as you did for your Disney+ password, a bad actor could gain access. Furthermore, hackers with stolen datasets<\/a> at their fingertips could easily filter on key terms to find the Disney fans. Just look how many times the 12 Disney princesses showed up in breached datasets, according to haveibeenpwned.com<\/a>:<\/p>\n

\"\"<\/a><\/p>\n

Then there are these terms that a dedicated Disney fan might choose in a moment of weakness:<\/p>\n

\"\"<\/a><\/p>\n

Friends, it\u2019s a whole new world<\/a> out there. Data breaches happen, with data files swapped and sold in the dark corners of the web. No one knows how far it goes<\/a>. That\u2019s why good password habits are more important than ever, and you can\u2019t let it go<\/a>. Picking unique passwords for each account is one of the bare necessities<\/a> of online life. It’s OK to admit that you need help, because when it comes to remembering passwords, who among us can snap our fingers and say \u201cremember me<\/a>.\u201d<\/p>\n

Firefox Lockwise<\/a> gets you almost there<\/a>.<\/p>\n

When setting up accounts, Lockwise can help you select something complex and unique that you never would have thought of on your own. Then you can save that tricky password<\/a> straight into your browser and use it directly from the app, secured behind a primary password or fingerprint login protected in the most delightful way<\/a> for when you need it.<\/p>\n

We can\u2019t guarantee that various services and platforms you use won\u2019t ever be compromised, but we can help you create complex unique passwords to minimize your exposure should it occur. And with Firefox Monitor<\/a>, we can alert you when breaches happen.<\/p>\n

Ready to try Firefox Lockwise? Set up your Firefox account<\/a> and be our guest<\/a>.<\/p>\n

\"\"<\/a><\/p>\n

\n

How did we get these numbers?<\/i><\/b> Since we don’t have a crystal ball, we looked them up in<\/i> haveipbeenpwned.com<\/i><\/a>. We couldn\u2019t access any data files, browse lists of passwords or link passwords to logins \u2014 that info is inaccessible and kept secure \u2014 but we could<\/i> look up random passwords manually<\/i><\/a>. Current numbers on the site may be higher than at time of publication as new datasets are added to HIBP. Alas, data breaches keep happening. There’s no time like the present to make sure all your passwords are as strong and unique as you are, princess.<\/i><\/p>\n

See what other passwords aren’t your friends.<\/a><\/strong><\/p>\n

\u00a0<\/p>\n\n\n\n
\"\"<\/a><\/td>\n\"\"<\/a><\/td>\n\"\"<\/a><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"excerpt":{"rendered":"

When the Disney+ streaming service rolled out, millions of people flocked to set up accounts. And within a week, thousands of poor unfortunate souls reported that their Disney passwords were hacked. According to media reports, some Disney+ account holders have lost their account access while hackers have sold their logins online. BBC News: Disney+ fans […]<\/p>\n","protected":false},"author":727,"featured_media":52427,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[464058],"tags":[],"coauthors":[],"acf":[],"yoast_head":"\nPrincesses make terrible passwords for Disney+ - The Mozilla Blog<\/title>\n<meta name=\"description\" content=\"Were Disney+ accounts hacked or was it a case of password reuse? One thing is clear, princess, these passwords are a royal mess.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/\",\"url\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/\",\"name\":\"Princesses make terrible passwords for Disney+ - The Mozilla Blog\",\"isPartOf\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2019\/11\/ff-breached-pw-disney-royal-mess.jpg\",\"datePublished\":\"2019-11-21T00:00:00+00:00\",\"dateModified\":\"2021-02-03T02:42:15+00:00\",\"author\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/5c987afc4f606be73692d2acfdd1316c\"},\"description\":\"Were Disney+ accounts hacked or was it a case of password reuse? One thing is clear, princess, these passwords are a royal mess.\",\"breadcrumb\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/#primaryimage\",\"url\":\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2019\/11\/ff-breached-pw-disney-royal-mess.jpg\",\"contentUrl\":\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2019\/11\/ff-breached-pw-disney-royal-mess.jpg\",\"width\":2000,\"height\":1348},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/blog.mozilla.org\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Princesses make terrible passwords for Disney+ and every other account\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/#website\",\"url\":\"https:\/\/blog.mozilla.org\/en\/\",\"name\":\"The Mozilla Blog\",\"description\":\"News and Updates about Mozilla\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/blog.mozilla.org\/en\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/5c987afc4f606be73692d2acfdd1316c\",\"name\":\"M.J. Kelly\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/image\/70718b02fa9f11d88288b937f1da2ac1\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d61ff6a9eb6dd324df20cb773e6c416e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d61ff6a9eb6dd324df20cb773e6c416e?s=96&d=mm&r=g\",\"caption\":\"M.J. Kelly\"},\"description\":\"Mozilla Communications\",\"url\":\"https:\/\/blog.mozilla.org\/en\/author\/mjkellymozilla-com\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Princesses make terrible passwords for Disney+ - The Mozilla Blog","description":"Were Disney+ accounts hacked or was it a case of password reuse? One thing is clear, princess, these passwords are a royal mess.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/","url":"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/","name":"Princesses make terrible passwords for Disney+ - The Mozilla Blog","isPartOf":{"@id":"https:\/\/blog.mozilla.org\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/#primaryimage"},"image":{"@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/#primaryimage"},"thumbnailUrl":"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2019\/11\/ff-breached-pw-disney-royal-mess.jpg","datePublished":"2019-11-21T00:00:00+00:00","dateModified":"2021-02-03T02:42:15+00:00","author":{"@id":"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/5c987afc4f606be73692d2acfdd1316c"},"description":"Were Disney+ accounts hacked or was it a case of password reuse? One thing is clear, princess, these passwords are a royal mess.","breadcrumb":{"@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/#primaryimage","url":"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2019\/11\/ff-breached-pw-disney-royal-mess.jpg","contentUrl":"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2019\/11\/ff-breached-pw-disney-royal-mess.jpg","width":2000,"height":1348},{"@type":"BreadcrumbList","@id":"https:\/\/blog.mozilla.org\/en\/internet-culture\/deep-dives\/disney-password\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/blog.mozilla.org\/en\/"},{"@type":"ListItem","position":2,"name":"Princesses make terrible passwords for Disney+ and every other account"}]},{"@type":"WebSite","@id":"https:\/\/blog.mozilla.org\/en\/#website","url":"https:\/\/blog.mozilla.org\/en\/","name":"The Mozilla Blog","description":"News and Updates about Mozilla","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/blog.mozilla.org\/en\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/5c987afc4f606be73692d2acfdd1316c","name":"M.J. Kelly","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/image\/70718b02fa9f11d88288b937f1da2ac1","url":"https:\/\/secure.gravatar.com\/avatar\/d61ff6a9eb6dd324df20cb773e6c416e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d61ff6a9eb6dd324df20cb773e6c416e?s=96&d=mm&r=g","caption":"M.J. Kelly"},"description":"Mozilla Communications","url":"https:\/\/blog.mozilla.org\/en\/author\/mjkellymozilla-com\/"}]}},"_links":{"self":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/posts\/63030"}],"collection":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/users\/727"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/comments?post=63030"}],"version-history":[{"count":0,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/posts\/63030\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/media\/52427"}],"wp:attachment":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/media?parent=63030"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/categories?post=63030"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/tags?post=63030"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/coauthors?post=63030"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}