Assuming the leak is real (I did not attempt to verify if any of the leaked passwords work myself): why the heck are popular services in 2023 still using MD5?

I’m also really disappointed by the fact that many users & even many admins (people with @iracing.com and @tradingpaints.com e-mail addresses) clearly don’t use password managers.

Unsalted. And MD5? Ugh ugh ugh. Feel so bad for the thousands of these folks that re-use the same password for important email accounts and banking.

Password managers are a must today.