Total Tests:

Samsung Investigates Massive Data Leak - What You Need To Know

By Davey Winder for Forbes
Thursday, May 9, 2019

Samsung has revoked the Amazon Web Services (AWS) credentials following Hussein's disclosure to them on April 10, although Whittaker says that vulnerability report has still not been closed by Samsung which suggests there is possibly still remediation work to be done. In a statement to TechCrunch, a Samsung spokesperson said that "we have yet to find evidence that any external access occurred" but Samsung is "currently investigating this further."

Ilia Kolochenko, founder of web security vendor ImmuniWeb, says that many large enterprises unwittingly leak source code through not only public code repositories but also social networks, Pastebin and other communities on the web. "Often, the source code contains hardcoded credentials and API keys," Kolochenko says, "let alone intellectual property owned by the organizations." He blames the outsourcing of software development to third parties for exacerbating the problem. "Remote developers may recklessly share, send and store your source code without any protection or care," Kolochenko warns, "cybercriminals glean leaked data from public websites, frequently securing a windfall." Read Full Article


Book a Call Ask a Question
Close
Talk to ImmuniWeb Experts
ImmuniWeb AI Platform
Have a Technical Question?

Our security experts will answer within
one business day. No obligations.

Have a Sales Question?
Email:
Tel: +41 22 560 6800 (Switzerland)
Tel: +1 720 605 9147 (USA)
*
*
*
*
Your data will stay private and confidential