Code formatting platforms like JSONFormatter and CodeBeautify are exposing thousands of sensitive secrets, including credentials and API keys, which are exploited by threat actors. Hundreds of organizations across various sectors are affected by these leaks, highlighting the risks of improper data sharing and storage on online tools. #JSONFormatter #CodeBeautify #CredentialLeaks #ThreatActors
Keypoints
- Millions of secrets were inadvertently leaked on GitHub last year, emphasizing a widespread issue.
- Users often accidentally expose sensitive information by saving projects containing credentials on online formatting platforms.
- Threat actors actively scrape these platforms and use leaked secrets within days of exposure.
- Leaked data has impacted organizations across multiple sectors, including cybersecurity, government, and healthcare.
- WatchTowr advocates for reducing the use of such online tools for sharing sensitive project information.
Read More: https://www.securityweek.com/thousands-of-secrets-leaked-on-code-formatting-platforms/