Security News > 2024 > October > Gang gobbles 15K credentials from cloud and email providers' garbage Git configs
2024-10-31 23:59
Emeraldwhale gang looked sharp – until it made a common S3 bucket mistake A criminal operation dubbed Emeraldwhale has been discovered after it dumped more than 15,000 credentials belonging to cloud service and email providers in an open AWS S3 bucket, according to security researchers.…
News URL
https://go.theregister.com/feed/www.theregister.com/2024/10/31/emeraldwhale_credential_theft/
Related news
- Hackers steal 15,000 cloud credentials from exposed Git config files (source)
- Hackers exploit Roundcube webmail flaw to steal email, credentials (source)
- Roundcube XSS flaw exploited to steal credentials, email (CVE-2024-37383) (source)
- Massive Git Config Breach Exposes 15,000 Credentials; 10,000 Private Repos Cloned (source)