[meowface]

This was one of the least detailed and helpful disclosures I've ever seen.

Reading "encrypted passwords", and then "salted hashes" without any specification of the hash algorithm from a tech company like Mozilla is utterly astonishing to me.

I feel like whoever discovered this breach sent it over to the PR department without any sort of final review of the release by an engineer.

[ygjb]

Not at all, the decision was made to release the information necessary to help people decide if action was needed. As you can see from this thread, we are happy to provide relevant details, and like most of our other tools, Kuma, the platform that MDN uses is open source, and on github.