Thousands of Firefox user cookies found on GitHub

GitHub has discovered thousands of Firefox browser cookies that can be used to hijack users' Internet sessions. British expert Aidan Marlin was the first to report this, writes “Kommersant».

Marlin spoke about the leak to GitHub representatives, but they replied that "the credentials provided by users of the service are not within the scope of the vulnerability search program."

Anyone can access the uploaded cookies, since GitHub is an open platform. And this makes the leak critical not only for Firefox users. You can use such files in other browsers, and this also does not require entering a password. In addition, attackers can potentially reset all of the victim's credentials, completely taking over the victim's account.

Aidan Marlin suggests that the data of the developers themselves from GitHub, which they uploaded to the repository by mistake, turned out to be publicly available. To eliminate the risk of their being used against you, it is important to regularly clear cookies, do not use the functions of saving credentials in the browser, and also change logins and passwords more often.