The Infinite Brief

The simple search (inurl:https://trello.com AND intext:@gmail.com AND intext:password) reveals all Gmail passwords publicly stored on Trello.

The moral of this story is that people should use password managers to store their passwords, not an unsecured and publicly available site like Trello.

Trello is not at fault for this vulnerability. Rather, it is the fault of users being too lackadaisical with their account security.