Preliminary analysis indicates that the exploit was limited to SpreadFirefox exclusively, meaning that other Mozilla Foundation web sites were not attacked or compromised. The vulnerability, which was exploited by "unknown remote attackers," could potentially have enabled the forces of computing darkness to obtain the username and password of every registered SpreadFirefox user, as well as any other optional information that users may have provided, including: real name, web site URL, e-mail address, IM screename, and home address.Read more at Ars Technica
SpreadFirefox was hacked
Posted on Saturday, July 16 2005 @ 4:30 CEST by Thomas De Maesschalck