Hack collective Anonymous exposed 2,000 usernames and passwords on a San Francisco transportation website. 1,300 passwords were randomly generated when users signed up for accounts at myBART. The website stored the passwords unhashed in its database — considered to be an unsound security practice. It’s rare for websites to mandate randomly generated passwords, a University of Cambridge candidate says. Anonymous posted names, home addresses, e-mail addresses and passwords of 102 BART police officers on Aug. 11 after the transportation agency shut off mobile-phone service.”]
Source: https://www.csoonline.com/article/2129368/mybart-hack-by-anonymous-could-have-been-worse.html