We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

how can I tell if somebody stole my firefox password

looking on my iPhone, under passwords, there are many sites that say password has been compromised and to change it. The only way this could happen, I think, is if somebody got my Firefox password. Now if they did, they would still have to get my master browsing password, which is different and more complex. Is it possible to extract passwords from my account without knowing the master password?

looking on my iPhone, under passwords, there are many sites that say password has been compromised and to change it. The only way this could happen, I think, is if somebody got my Firefox password. Now if they did, they would still have to get my master browsing password, which is different and more complex. Is it possible to extract passwords from my account without knowing the master password?

தீர்வு தேர்ந்தெடுக்கப்பட்டது

Hi timbuckoff, I believe that data comes from Firefox Monitor. Mozilla's data partner for that service is https://haveibeenpwned.com/. Generally speaking, they provide information on massive data breaches affecting thousands or millions of users. They would not have data on an individual breach like someone hacking your phone or laptop.

I can't recall whether the warning is based on a website + username combination, or whether haveibeenpwned and Monitor also know what passwords were in the breach. So you may need to investigate individual breaches for more information about what was exposed. Do the messages have links out to Monitor?

Read this answer in context 👍 1

All Replies (2)

If you suspect your password(s) are misused, Change those passwords immediately.

Also, verify your user e-mail is correct.

தீர்வு தேர்ந்தெடுக்கப்பட்டது

Hi timbuckoff, I believe that data comes from Firefox Monitor. Mozilla's data partner for that service is https://haveibeenpwned.com/. Generally speaking, they provide information on massive data breaches affecting thousands or millions of users. They would not have data on an individual breach like someone hacking your phone or laptop.

I can't recall whether the warning is based on a website + username combination, or whether haveibeenpwned and Monitor also know what passwords were in the breach. So you may need to investigate individual breaches for more information about what was exposed. Do the messages have links out to Monitor?