Business Privacy

Uh-Oh: Passwords Stored on Trello Are Easily Revealed Using a Simple Google Search

The Infinite Brief
A Reddit user discovered that by using simple Google dorks, anyone can reveal all passwords publicly stored on Trello dashboards.

The simple search (inurl: AND AND intext:password) reveals all Gmail passwords publicly stored on Trello.

The moral of this story is that people should use password managers to store their passwords, not an unsecured and publicly available site like Trello.

Trello is not at fault for this vulnerability. Rather, it is the fault of users being too lackadaisical with their account security.

Curated via Reddit


Leave a Response