Mozilla shuts online store after security breach

The open-source groups said it has asked Gateway CDI to quickly notify individuals who had their sensitive data compromised.  Mozilla did not elaborate on the extent of compromised customer data.

Mozilla said it found out about the breach on Monday (August 4, 2009) and took the immediate preventative step of shutting down the Mozilla Store to ensure that no additional users could be compromised.

Mozilla immediately reached out to GatewayCDI and encouraged them to quickly inform individuals whose data had been compromised.  GatewayCDI is currently investigating their systems and determining the cause and extent of the breach.  Mozilla Store customers who are affected will be contacted directly by GatewayCDI.

Mozilla is committed to user privacy and the store will only be reinstated once we have a satisfactory assurance of ongoing login security and data privacy.

The Mozilla Store is currently displaying a "closed for maintenance" notice.

Mozilla said its international store, which is managed by a separate partner company, has also temporarily been shut down as a precautionary measure.

The Mozilla Community Store, which is separate, was not impacted.