Feb 25, 2017 · 1 min read
Sorry to be a stickler, but the issue here isn’t just about passwords. Even for a site that doesn’t use them, the access token that’s in your cookies for Medium could be stolen and used in the same way as a password is. If Medium use Cloudflare, they’re vulnerable. I’m not sure if they do or not.
