YetanotherHackerNewsdigest.com
HN Theater | HN Academy | HN Books

HN Theater @HNTheaterMonth

The best talks and videos of Hacker News.
Rankings: this week · month (apr/may) · year (2024) · all time
digests · search

Hacker News Comments on
Analyzing the Samsung Hack - Thousands of credentias / secrets exposed

GitGuardian · Youtube · 21 HN points · 0 HN comments
HN Theater has aggregated all Hacker News stories and comments that mention GitGuardian's video "Analyzing the Samsung Hack - Thousands of credentias / secrets exposed".
Youtube Summary
We run through the recent Samsung breach by Lapsus$ group taking a look into exactly what was leaked and if any credentials and secrets were exposed because of it (spoiler thousands were leaked).
First, we take a look at exactly what was leaked from Samsung, next we scan it for any secrets and look into a couple of examples and finally discuss what is coming next from Lapsus$ group and how the potentially hacked Samsung.

Intro-0:00
Nvidia Breach-0:25
What Samsung info was leaked-0:58
Scanning the source code for secrets-3:09
Looking into AWS keys leaked-5:00
Reviewing GitHub tokens leaked-5:46
Employees keys-7:15
Why are keys in source code-8:07
Lapsus$ attack path-8:55
Preventing Secret Sprawl-10:40
HN Theater Rankings

Hacker News Stories and Comments

All the comments and stories posted to Hacker News that reference this video.
Mar 16, 2022 · 21 points, 3 comments · submitted by advocatemack
ThePowerOfFuet
Why is this a video? A writeup would be so much easier (and quicker) to process.
sschueller
Don't commit your production secrets into source code. Isn't that like the first rule of security?

Maybe more companies should open source their code then they have to think of these things.

glouwbug
May as well make all databases public too considering they get leaked anyway
HN Theater is an independent project and is not operated by Y Combinator or any of the video hosting platforms linked to on this site.
~ yaj@
;laksdfhjdhksalkfj more things
yahnd.com ~ Privacy Policy ~
Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.