Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?

I received this email just now:

Sbject: Your MDN email address was temporarily posted on a publicly accessible server

Mozilla Developer Network (MDN) mozilla@e.mozilla.org 8:14 PM (3 minutes ago) Reply to me Dear MDN user,

We would like to inform you about an incident involving your email address. We recently discovered that, starting on about June 23, for a period of 30 days, a data sanitization process of the Mozilla Developer Network (MDN) site database had been failing, resulting in the accidental disclosure of MDN data on a publicly accessible server. As soon as we became aware, the database dump file was removed from the server immediately, and the process that generates the dump was disabled to prevent further disclosure. Your email address (but not password) was posted on that server for that 30 day time period.

We are known for our commitment to privacy and security, and we are deeply sorry for any inconvenience or concern this incident may cause you. We began investigating the incident as soon as we learned of it. In addition to notifying our users, we’re also looking at our internal processes to ensure there are protections in place to reduce the likelihood of something like this happening again.

You can learn more by visiting: http://blog.mozilla.org/security/2014/08/01/mdn-database-disclosure/

or emailing [security@mozilla.org] if you have any questions or concerns.

Stormy Peters Director, Developer Relations


Mozilla 331 E. Evelyn Avenue Mountain View, CA 94041 USA

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment