Password vault is protected OR NOT????
I use firefox (as mozilla) for decades ago. Never had issues, is super easy, fast and ...secure (?) A hacker last week have access on my Firefox, download ALL my saved passwords as CSV... as a plain TEXT and ATTACKS on my entire life!!! And the nightmare goes on and on... Stole my primary Google Account, Facebook, Instagram, Ubisoft, PayPal, Microsoft Account.... and other 20 sites beside this. For GOD sake, didn't you EVER think to place an extra security layer on this EXTREMELY SENSITIVE details??? A master password? 2FA or something else? Are you serious??? I'm so sorry BUT YOU'RE LOST MY TRUST!!!! Period!!! Give a change to your selves and PROTECT YOUR CUSTOMERS!
所有回覆 (2)
Antonis WolfBack, sorry this happenned.
You can set a "Master Password" (known in Firefox as a Primary Password), see here: https://support.mozilla.org/en-US/kb/use-primary-password-protect-stored-logins
Firefox always stores the logins encrypted in logins.json in the Firefox profile folder, but the encryption key is stored in key4.db and having access to logins.json and key4.db is sufficient to access the logins. If you use the Primary Password then this encryption key is encrypted with the PP and only this PP can decrypt the logins. If you have enabled 2FA for websites that support 2FA then this adds an extra security layer and knowing username and password isn't sufficient.