The Firefox password management feature shows alerts about logins that were potentially exposed in data breaches. If it’s likely that one of your saved logins was exposed in a known data breach, you’ll see this alert with its associated login. Select Learn more to read details about the breach on Mozilla Monitor.
How Firefox notifies about website breaches
Firefox checks the date of a known website breach against the date you saved a password for that website. If the website was breached after you saved your password, you’ll see this alert. The database of breached websites is provided by Have I been Pwned.
Firefox will also check to see if you’ve reused any of these potentially vulnerable passwords with other logins you’ve saved to Firefox. The browser does this by creating an encrypted list of your breached passwords, then checking it against all saved passwords. Firefox does not keep logs of your plaintext passwords or know them.
Turn off website breach alerts
Disabling the feature also prevents Firefox from checking to see if you’ve reused these potentially vulnerable passwords on any of your other saved logins.
- In the Menu bar at the top of the screen, click and then select or , depending on your macOS version.Click the menu button and select .
- Select the Logins and PasswordsPasswords section.
- Deselect the checkbox for Show alerts about passwords for breached websites.