January 31, 2024 at 12:36PM An employee’s leaked GitHub token at Mercedes-Benz allowed unrestricted access to source code on the carmaker’s GitHub Enterprise server. The breach, discovered in January 2024, could have led to extensive exposure of critical information. RedHunt Labs warns of potential financial and reputational damage. GitHub and other firms have also faced … Read more
October 31, 2023 at 11:51AM Cybersecurity firm Palo Alto Networks warns that a threat actor, known as EleKtra-Leak, has been harvesting identity and access management (IAM) credentials from public GitHub repositories within five minutes of exposure. The threat actor has been using the credentials for cryptojacking campaigns that have been ongoing for at least two … Read more
October 31, 2023 at 10:57AM Attackers are actively targeting exposed Amazon Web Services (AWS) IAM credentials in public GitHub repositories to create instances for cryptocurrency mining. Palo Alto Networks observed the attacker creating 474 compute-optimized EC2 instances between August 30 and October 6. The attackers are able to launch attacks within minutes of credentials being … Read more
October 30, 2023 at 07:24AM The EleKtra-Leak campaign is targeting exposed Amazon Web Service (AWS) identity and access management (IAM) credentials on public GitHub repositories for cryptojacking. The campaign has been active since December 2020 and has employed automated targeting of IAM credentials within four minutes of exposure. The attacker has also been linked to … Read more