{"id":631,"date":"2016-04-09T09:45:18","date_gmt":"2016-04-09T09:45:18","guid":{"rendered":"http:\/\/blog.mozilla.org\/services\/?p=631"},"modified":"2016-04-09T09:45:18","modified_gmt":"2016-04-09T09:45:18","slug":"stolen-passwords-used-to-break-into-firefox-accounts","status":"publish","type":"post","link":"https:\/\/blog.mozilla.org\/services\/2016\/04\/09\/stolen-passwords-used-to-break-into-firefox-accounts\/","title":{"rendered":"Stolen Passwords Used to Break into Firefox Accounts"},"content":{"rendered":"<p>We recently discovered a pattern of suspicious logins to Firefox Accounts. It appears that an attacker with access to passwords from data breaches at other websites has been attempting to use those passwords to log into users\u2019 Firefox Accounts. In some cases where a user reused their Firefox Accounts password on another website and that website was breached, the attacker was able to take the password from the breach and use it to log into the user\u2019s Firefox Account.<\/p>\n<p>We\u2019ve already taken steps to protect our users. We automatically reset the passwords of users whose accounts were broken into. We also notified these users with instructions on how to regain access to their accounts and further protect themselves going forward. This investigation is ongoing and we will notify users if we discover unauthorized activity on their account.<\/p>\n<p>User security is paramount to us. It is part of our <a href=\"https:\/\/www.mozilla.org\/en-US\/mission\/\">mission<\/a> to help build an Internet that truly puts people first and where individuals are empowered, safe and independent. Events like this are a good reminder of the importance of <a href=\"https:\/\/support.mozilla.org\/kb\/create-secure-passwords-keep-your-identity-safe\">good password hygiene<\/a>. Using strong and different passwords across websites is important for staying safe online. We\u2019re also working on additional rate-limiting and other security mechanisms to provide additional protection for our users.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We recently discovered a pattern of suspicious logins to Firefox Accounts. It appears that an attacker with access to passwords from data breaches at other websites has been attempting to use those passwords to log into users\u2019 Firefox Accounts. In &hellip; <a class=\"go\" href=\"https:\/\/blog.mozilla.org\/services\/2016\/04\/09\/stolen-passwords-used-to-break-into-firefox-accounts\/\">Continue reading<\/a><\/p>\n","protected":false},"author":641,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[41992,42007],"tags":[],"_links":{"self":[{"href":"https:\/\/blog.mozilla.org\/services\/wp-json\/wp\/v2\/posts\/631"}],"collection":[{"href":"https:\/\/blog.mozilla.org\/services\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.mozilla.org\/services\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/services\/wp-json\/wp\/v2\/users\/641"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/services\/wp-json\/wp\/v2\/comments?post=631"}],"version-history":[{"count":0,"href":"https:\/\/blog.mozilla.org\/services\/wp-json\/wp\/v2\/posts\/631\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.mozilla.org\/services\/wp-json\/wp\/v2\/media?parent=631"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.mozilla.org\/services\/wp-json\/wp\/v2\/categories?post=631"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.mozilla.org\/services\/wp-json\/wp\/v2\/tags?post=631"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}