Bleeping Computer

Hackers ramp up scans for leaked Git tokens and secrets

Threat actors are intensifying internet-wide scanning for Git configuration files that can reveal sensitive secrets and authentication tokens used to compromise cloud services and source code ...
Dark Reading

EmeraldWhale's Massive Git Breach Highlights Config Gaps

Earlier this week, researchers uncovered a major cybercriminal operation, dubbed EmeraldWhale, after the attackers dumped more than 15,000 credentials into a stolen, open AWS S3 bucket in a massive ...
Bleeping Computer

Hackers steal 15,000 cloud credentials from exposed Git config files

A large-scale malicious operation named "EmeraldWhale" scanned for exposed Git configuration files to steal over 15,000 cloud account credentials from thousands of private repositories. According to ...
CSOonline

Cybercriminals intensify hunt for exposed Git secrets

About 4,800 unique IP addresses were scanned for exposed Git configuration files in a single day to steal sensitive secrets and tokens. Git configuration files exposed in public repositories are being ...