How to enable email enumeration protection on all of your Firebase projects

Email enumeration is a type of brute-force attack in which a malicious actor attempts to guess or confirm users in a system by passing an email address to the API and checking the response. Starting September 15, 2023, we’ve enabled email enumeration protection on all new projects. Existing projects were unchanged, but it is recommended that you enable this protection on all existing projects to protect your apps against credential stuffing attacks.

#firebase #bruteforce #cybersecurity