all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Researchers discover exposed API secrets, impacting major tech tokens

Add to bookmarks
Feb. 5, 2024, 5:30 a.m. | Help Net Security

Help Net Security www.helpnetsecurity.com

Escape’s security research team scanned 189.5 million URLs and found more than 18,000 exposed API secrets. 41% of exposed secrets were highly critical, i.e. could lead to financial risks for the organizations. Exposed API secrets The exposed secrets include hundreds of Stripe, GitHub/GitLab tokens, RSA private keys, OpenAI keys, AWS tokens, Twitch secret keys, cryptocurrency exchange keys, X tokens, and Slack and Discord webhooks. GitGuardian’s ‘The State of Secret Sprawl’ indicates a 67% increase in … More →


The post …

api api security aws critical cybersecurity data leak discover escape exposed financial found github gitlab keys major openai organizations private private keys research researchers risks rsa secrets security security research slack stripe team tech tokens urls

Visit resource

More from www.helpnetsecurity.com / Help Net Security

1Password Extended Access Management secures unmanaged applications and devices 6 hours ago | www.helpnetsecurity.com
1password access access management application +18
New SOHO router malware aims for cloud accounts, internal company resources 8 hours ago | www.helpnetsecurity.com
account accounts actor alibaba +38
Trend Micro expands AI-powered cybersecurity platform 8 hours ago | www.helpnetsecurity.com
adoption advancements ai-powered ai tools +16
HITRUST updates Cyber Threat Adaptive engine to address emerging cyber threats 8 hours ago | www.helpnetsecurity.com
accuracy address advanced ai capabilities +27
Secure Code Warrior SCW Trust Score quantifies the security posture of developer teams 9 hours ago | www.helpnetsecurity.com
benchmark code developer effectively +13
Proofpoint DLP Transform secures data moving to ChatGPT, copilots, and other GenAI tools 9 hours ago | www.helpnetsecurity.com
address businesses cases chatgpt +24
Appdome launches MobileEDR, merging MTD and EDR to protect enterprise mobile apps 9 hours ago | www.helpnetsecurity.com
agentless amp app appdome +27
Confluent enhances Apache Flink with new features for easier AI and broader stream processing 9 hours ago | www.helpnetsecurity.com
ai model apache cloud confluent +18
Nord Security unveils NordStellar, a platform for advanced cyber threat detection and response 10 hours ago | www.helpnetsecurity.com
access accounts advanced and response +38

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

DevSecOps Engineer

@ LinQuest | Beavercreek, Ohio, United States
View on infosec-jobs.com

Senior Developer, Vulnerability Collections (Contractor)

@ SecurityScorecard | Remote (Turkey or Latin America)
View on infosec-jobs.com

Cyber Security Intern 03416 NWSOL

@ North Wind Group | RICHLAND, WA
View on infosec-jobs.com

Senior Cybersecurity Process Engineer

@ Peraton | Fort Meade, MD, United States
View on infosec-jobs.com

Sr. Manager, Cybersecurity and Info Security

@ AESC | Smyrna, TN 37167, Smyrna, TN, US | Santa Clara, CA 95054, Santa Clara, CA, US | Florence, SC 29501, Florence, SC, US | Bowling Green, KY 42101, Bowling Green, KY, US
View on infosec-jobs.com
View more jobs