National Cyber Warfare Foundation (NCWF) Forums


Attackers Exploit Public .env Files to Breach Cloud and Social Media Accounts


0 user ratings
2024-08-16 16:38:41
milo
Blue Team (CND)

 - archive -- 
A large-scale extortion campaign has compromised various organizations by taking advantage of publicly accessible environment variable files (.env) that contain credentials associated with cloud and social media applications.
"Multiple security missteps were present in the course of this campaign, including the following: Exposing environment variables, using long-lived credentials, and absence



Source: TheHackerNews
Source Link: https://thehackernews.com/2024/08/attackers-exploit-public-env-files-to.html


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
Blue Team (CND)



Copyright 2012 through 2024 - National Cyber Warfare Foundation - All rights reserved worldwide.