Security News > 2020 > April > GDPR Compliance Site Leaks Git Data, Passwords
2020-04-27 21:15
The website, GDPR.EU, is an advice site for organizations that are struggling to comply with the General Data Protection Regulation laws that were imposed by the EU in 2018.
"However, the irony of a EU-funded web site about GDPR having security issues isn't lost on us."
Git folder could lay bare source code, server access keys, database passwords, hosted files, encryption salts and more.
In the meantime, researchers urge website administrators to remove the Git directory from their sites to improve security.
"If your site is found to have this folder available, the contents should be reviewed and any password contained in accessible files should be changed as they should be classed as compromised."