Welcome to our

Cyber Security News Aggregator

Cyber Tzar

provide a

cyber security risk management

platform; including automated penetration tests and risk assesments culminating in a "cyber risk score" out of 1,000, just like a credit score.

First slide label

Some representative placeholder content for the first slide.

Second slide label

Some representative placeholder content for the second slide.

Third slide label

Some representative placeholder content for the third slide.

New year, old tricks: Hunting for CircleCI configuration files, (Mon, Jan 9th)

published on 2023-01-09 16:33:54 UTC by
Content:

I have written before about attackers looking for exposed configuration files. Configuration files often include credentials or other sensitive information.Today, I noticed some scans for a files called "/.circleci/config.yml". Given the recent breach at CircleCI, I dug in a bit deeper.

Article: New year, old tricks: Hunting for CircleCI configuration files, (Mon, Jan 9th) - published almost 2 years ago.

https://isc.sans.edu/diary/rss/29416
Published: 2023 01 09 16:33:54
Received: 2023 01 09 18:14:20
Feed: SANS Internet Storm Center, InfoCON: green
Source: SANS Internet Storm Center, InfoCON: green
Category: Alerts
Topic: Vulnerabilities
Views: 1