Coding Assistance Websites Exposed Credentials for Banks & Govt

Coding assistance websites exposed credentials for banks & govt

Two websites intended to help software developers format and structure their code have exposed thousands of login credentials, authentication keys,...

Code beautifiers expose credentials from banks, govt, tech orgs

Thousands of credentials, authentication keys, and configuration data impacting organizations in sensitive sectors have been sitting in publicly accessible JSON snippets submitted to the JSONFormatter and CodeBeautify online tools that format and structure code.

Watch out coders - top code formatting sites are apparently exposing huge amounts of user data

Image Credit: Pixabay (Image credit: Geralt / Pixabay) WatchTowr found JSONFormatter and CodeBeautify exposing sensitive data via unprotected “Recent Links” featuresResearchers pulled years of raw data, uncovering credentials, private keys, API tokens, and PII from critical industriesCriminals are already probing the flaw, highlighting risks of uploading sensitive code to public formatting sitesSome of the top code formatting sites are exposing…

Developers left large cache of credentials exposed on code generation websites

A large trove of sensitive credentials, authentication keys, configuration data, tokens, and API keys has been potentially exposed by developers using two popular code formatting sites, security company watchTowr has discovered. In an industry that normally worries about criminal activity, watchTowr’s research on the JSON Formatter and Code Beautify code utility sites shines light on a completely different problem: that data can also be leaked b…

Developers left large cache of credentials exposed on code generation websites

A large trove of sensitive credentials, authentication keys, configuration data, tokens, and API keys has been potentially exposed by developers using two popular code formatting sites, security company watchTowr has discovered. In an industry that normally worries about criminal activity, watchTowr’s research on the JSON Formatter and Code Beautify code utility sites shines light on a completely different problem: that data can also be leaked b…

Years of JSONFormatter and CodeBeautify Leaks Expose Thousands of Passwords and API Keys

New research has found that organizations in various sensitive sectors, including governments, telecoms, and critical infrastructure, are pasting passwords and credentials into online tools like JSONformatter and CodeBeautify that are used to format and validate code. Cybersecurity company watchTowr Labs said it captured a dataset of over 80,000 files on these sites, uncovering thousands of This article has been indexed from The Hacker News Re…