Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
-
@arraysstartat1 because it was a complete database dump with usernames, emails, etc but there were no salts which are typically stored alongside hashes in the DB.
-
Thank god for the md5 hash at least. One of the known companies here in India sent me the credentials to my insurance account in plain text. Just ping me when you come across their database. I would be very glad.
Reference rant
https://devrant.com/rants/1087147/...
A few years ago I found a public AWS S3 bucket owned by a fortune 500 company containing a database dump backup with all of their users unsalted md5 hashed passwords.
I didn't report it because I don't want to get sued or charged. I don't know whether it's still public or not.
rant
passwords
s3
wk93
md5