"Researchers Discover Exposed API Secrets, Impacting Major Tech Tokens"

Escape's security research team conducted a scan of 189.5 million URLs and discovered the exposure of over 18,000 Application Programming Interface (API) secrets. Forty-one percent of the exposed secrets were highly critical, which could pose financial risks to organizations. Hundreds of Stripe, GitHub/GitLab tokens, RSA private keys, OpenAI keys, AWS tokens, Twitch secret keys, cryptocurrency exchange keys, X tokens, and Slack and Discord webhooks have all been exposed. GitGuardian's report, "The State of Secret Sprawl," reveals that there was a 67 percent increase in secret sprawl in 2023, with 10 million new cases of secret exposure on GitHub. This problem is not limited to GitHub and affects all aspects of software development and operations. This article continues to discuss the exposure of API secrets.

Help Net Security reports "Researchers Discover Exposed API Secrets, Impacting Major Tech Tokens"

Submitted by grigby1