Download to read offline
Uploaded byDigital Shadows
Source Code and Admin Password Shared on Public Site by Developer
An IT manager discovered their company's source code and administrator credentials had been shared on a public site by a developer. This information had also been copied to a malicious site, potentially allowing attackers access to internal systems. The company used Digital Shadows SearchLight to detect this inadvertent data exposure on GitHub. Analysts verified the alert, provided context and recommendations to help the company quickly remove the content and address processes to prevent future exposures.
More Related Content
![[CB20] Operation Chimera - APT Operation Targets Semiconductor Vendors by CK ...](https://cdn.slidesharecdn.com/ss_thumbnails/ckcheninndylinshang-dejiangcb20-210112134635-thumbnail.jpg?width=640&height=640&fit=bounds)
![[CB20] It is a World Wide Web, but All Politics is Local: Planning to Survive...](https://cdn.slidesharecdn.com/ss_thumbnails/meinelsoncb20-210112141536-thumbnail.jpg?width=640&height=640&fit=bounds)
Similar to Source Code and Admin Password Shared on Public Site by Developer
Source Code and Admin Password Shared on Public Site by Developer
- 1. Use Case Source Codeand Admin Password Shared on Public Site by Developer www.digitalshadows.com With Digital Shadows SearchLight™, an IT manager of a large technology company discovered a significant amount of their source code - including their credentials for their administrator - on a public site. This had subsequently been copied to a malicious site. Although this exposure was inadvertant, access to this information could allow attackers to gain access to internal systems. ght™, an IT manager of a large technology nt amount of their source code - including nistrator - on a public site. This had malicious site. dvertant, access to this information could o internal systems. LightTM tected ing our sources for the client’s email domains and code snippets, Digital Shadows SearchLight™ his inadvertent data loss on Github. A developer had unintentionally saved their work in a public Reviews and Adds Context dows analysts verified this alert, added context and provided recommendations for remediation. at this had been copied to a malicious site also meant that it constituted a more immediate r the organization. naged ontext and remediation advice, the company was able to quickly remove the content by making repository. In the longer term, the company readdressed their internal processes to reduce the of this happening again. obile App Stores Search Engines Forums RSS Feeds Network Infrastructure Domain Registrations IRC Closed Forums Tor I2P U.S. Headquarters Digital Shadows, Inc. 332 Pine Street, Suite 600 San Francisco, CA 94104 North American Intelligence Operations Hub 5307 E. Mockingbird Ln. Suite 915 Dallas, TX 75206 UK Headquarters Digital Shadows, Ltd. Level 39 One Canada Square London E14 5AB Overview With Digital Shadows SearchLight™, an IT manager of a large technology company discovered a significant amount of their source code - including their credentials for their administrator - on a public site. This had subsequently been copied to a malicious site. Although this exposure was inadvertant, access to this information could allow attackers to gain access to internal systems. Source Code and Admin Password Shared on Public Site by Developer Digital Shadows SearchLightTM What We Did Risk Detected By monitoring our sources for the client’s email domains and code snippets, Digital Shadows SearchLight™ detected this inadvertent data loss on Github. A developer had unintentionally saved their work in a public place. Analyst Reviews and Adds Context Digital Shadows analysts verified this alert, added context and provided recommendations for remediation. The fact that this had been copied to a malicious site also meant that it constituted a more immediate concern for the organization. Risk Managed With the context and remediation advice, the company was able to quickly remove the content by making it a private repository. In the longer term, the company readdressed their internal processes to reduce the likelihood of this happening again. About Digital Shadows Digital Shadows monitors and manages an organization’s digital risk across the widest range of data sources within the visible, deep, and dark web to protect an organization’s business, brand, and reputation. www.digitalshadows.com info@digitalshadows.com +1-888-889-4143 | +44 203 393 7001 Code-sharing Paste Sites Social Media Mobile App Stores Search Engines Forums RSS Feeds Network Infrastructure Domain Registrations IRC Closed Forums Tor I2P About Digital Shadows Digital Shadows enables organizations to manage digital risk by identifying and eliminating threats to their business and brand. We monitor for digital risk across the broadest range of data sources within the open, deep and dark web to deliver tailored threat intelligence, context and actionable remediation options that enable security teams to be more effective and efficient. Our clients can focus on growing their core business knowing that they are protected if their data is exposed, employees and third parties put them at risk, or their brand is being misused. To learn more, visit www.digitalshadows.com. Email: info@digitalshadows.com U.S. Headquarters Widest Collection of Sources SearchLight monitors for data exposure across the widest range of sources, within the open, deep and dark web. No stone is left unturned. Tailored and Targeted Collection A register of key assets that uniquely define your organization and your subsidiaries drives our intelligence machinery. Why Digital Shadows Get Started For more information on Digital Shadows SearchLightTM and how we can help protect your organization from Data Exposure, please contact us Visit www.digitalshadows.com for more information Call us at US 1-800-889-4143 UK +44 (0)203 393 7001 Email info@digitalshadows.com Analyst Added Context Digital Shadows intelligence analysts investigate and add context, impact and recommended action. Asset Registration Organizations register their company assets with Digital Shadows, including code samples, document markings and email footers. Explore View Organizations can view the credential exposure at a strategic level, identifying trends over time. Mitigation Options Each incident comes with a severity level and mitigation options. We also offer Managed Takedown Service, which provides end-to-end management for shutting down malicious activity and offloading this time consuming task from your team. About Digital Shadows Digital Shadows monitors and manages digital risk across the widest range of data sources within the open, deep and dark web to protect an organization’s business, brand and reputation. The Digital Shadows SearchLightTM service combines scalable data analytics with intelligence analysts to manage and mitigate risks of an organization’s cyber threat, data exposure, brand exposure, VIP exposure, infrastructure exposure, physical threat, and third party risk, and create an up-to-the-minute view of an organization’s digital risk with tailored threat intelligence. The company is jointly headquartered in London and San Francisco. For more information, visit www.digitalshadows.com. Data Exposure Example Call us at 1-888-889-4143 UK +44 (0)203 393 7001 U.S. Headquarters Digital Shadows, Inc. North American Intelligence Operations Hub UK Headquarters Widest Collection of Sources SearchLight monitors for data exposure across the widest range of sources, within the open, deep and dark web. No stone is left unturned. Tailored and Targeted Collection A register of key assets that uniquely define your organization and your subsidiaries drives our intelligence machinery. Why Digital Shadows Get Started For more information on Digital Shadows SearchLightTM and how we can help protect your organization from Data Exposure, please contact us Visit www.digitalshadows.com for more information Call us at US 1-800-889-4143 UK +44 (0)203 393 7001 Email info@digitalshadows.com Analyst Added Context Digital Shadows intelligence analysts investigate and add context, impact and recommended action. Asset Registration Organizations register their company assets with Digital Shadows, including code samples, document markings and email footers. Explore View Organizations can view the credential exposure at a strategic level, identifying trends over time. Mitigation Options Each incident comes with a severity level and mitigation options. We also offer Managed Takedown Service, which provides end-to-end management for shutting down malicious activity and offloading this time consuming task from your team. About Digital Shadows Digital Shadows monitors and manages digital risk across the widest range of data sources within the open, deep and dark web to protect an organization’s business, brand and reputation. The Digital Shadows SearchLightTM service combines scalable data analytics with intelligence analysts to manage and mitigate risks of an organization’s cyber threat, data exposure, brand exposure, VIP exposure, infrastructure exposure, physical threat, and third party risk, and create an up-to-the-minute view of an organization’s digital risk with tailored threat intelligence. The company is jointly headquartered in London and San Francisco. For more information, visit www.digitalshadows.com. Data Exposure Example www.digitalshadows.com U.S. Headquarters Digital Shadows, Inc. 332 Pine Street, Suite 600 San Francisco, CA 94104 North American Intelligence Operations Hub 5307 E. Mockingbird Ln. Suite 915 UK Headquarters Digital Shadows, Ltd. Level 39 One Canada Square Widest Collection of Sources SearchLight monitors for data exposure across the widest range of sources, within the open, deep and dark web. No stone is left unturned. Tailored and Targeted Collection A register of key assets that uniquely define your organization and your subsidiaries drives our intelligence machinery. Why Digital Shadows Get Started For more information on Digital Shadows SearchLightTM and how we can help protect your organization from Data Exposure, please contact us Visit www.digitalshadows.com for more information Call us at US 1-800-889-4143 UK +44 (0)203 393 7001 Email info@digitalshadows.com Analyst Added Context Digital Shadows intelligence analysts investigate and add context, impact and recommended action. Asset Registration Organizations register their company assets with Digital Shadows, including code samples, document markings and email footers. Explore View Organizations can view the credential exposure at a strategic level, identifying trends over time. Mitigation Options Each incident comes with a severity level and mitigation options. We also offer Managed Takedown Service, which provides end-to-end management for shutting down malicious activity and offloading this time consuming task from your team. About Digital Shadows Digital Shadows monitors and manages digital risk across the widest range of data sources within the open, deep and dark web to protect an organization’s business, brand and reputation. The Digital Shadows SearchLightTM service combines scalable data analytics with intelligence analysts to manage and mitigate risks of an organization’s cyber threat, data exposure, brand exposure, VIP exposure, infrastructure exposure, physical threat, and third party risk, and create an up-to-the-minute view of an organization’s digital risk with tailored threat intelligence. The company is jointly headquartered in London and San Francisco. For more information, visit www.digitalshadows.com. Data Exposure Example Digital Shadows SearchLight™ What We Did