• carewornalien@whata.clusterfsck.com
    link
    fedilink
    English
    arrow-up
    2
    ·
    2 years ago

    This is just the new version of leaked AWS access/secret keys… bad guys dredge through any place a token could be disclosed (GitHub project, public log file, etc) and build a database of them for sale… pretty bad given chat history is retained and available via API. Article points out the potential of information disclosure, which seems pretty significant…