Submitted by BasedSweet t3_10z1kx5 in technology
Breklin76 t1_j86p8q7 wrote
Reply to comment by 56kul in Millions of passwords stolen from LastPass earlier than company disclosed: Report by BasedSweet
They had a breach a while back, too. I switched to LastPass! 😂😂😂
56kul t1_j86w8wf wrote
They did? I tried to look up if they had any history of breaches and everything says they’ve never had one…
DashlaneCaden t1_j8e1fro wrote
Correct - we have never had a security breach (we even confidently state it front & center on our website). I'll never say it's impossible, but we are confident we deploy the highest level of security practices possible to ensure a breach will not happen.
Breklin76 t1_j8e9clo wrote
I stand corrected. I thought they did a couple of years ago. That’s good to know. I might return as a customer.
56kul t1_j8eapiz wrote
Do you work for Dashlane, by any chance? Because you’re speaking in first person.
DashlaneCaden t1_j8eatvh wrote
Yep ! I'm an engineer on our web app / extension.
56kul t1_j8eb97o wrote
Ah, alright.
So may I ask why Dashlane isn’t on Firefox’s extension store? Since you’re specifically working on the extension.
I know it’s not really the place to ask about it, but I tried looking it up and found a Reddit post from over a year ago.
DashlaneCaden t1_j8ecrbu wrote
Absolutely!
So I cannot speak to why we went the route of hosting the extension ourselves rather than listing via the Firefox add-on store in the first place, but I can say it's on our roadmap to explore listing this year. I'm not on the team that handles our store automation & deployment processes, but from my understanding there is some work needed making the migration still & it's slated this year (with no specific date planned yet).
Our hosted version will still receive automatic updates, we're just missing out on the marketing / discoverability that the add-on store provides.
56kul t1_j8ed5jp wrote
Well, I just hope it’ll be resolved soon.
I definitely trust that your self-hosted extension is safe, but I’m not a fan of using such extensions. I just like the piece of mind of using one directly from the store.
DashlaneCaden t1_j8ee111 wrote
Ah yes & just to clarify, our extension still has to go through the signing & review process at Mozilla, including submitting source code occasionally for them to reproduce builds & validate + approve our extension. We just opted to distribute it ourselves rather than in the add-on store originally.
56kul t1_j8ee8gg wrote
Wait, if you still need to verify it through Mozilla, doesn’t it mean that you’re already clear to host it through the add-on store?
DashlaneCaden t1_j8eeenv wrote
I believe the biggest hurdle is how to migrate users best from our hosted extension to the add-on store version, so we can avoid having to deploy & maintain the distribution of both versions. Moving from an unlisted extension -> listed is not as seamless as you'd expect, as it would technically be a new / separate extension on the add-on store.
DashlaneCaden t1_j8e18yu wrote
Dashlane has never had a security breach
Viewing a single comment thread. View all comments