Hackers access files of US-based cyber security firm

Today's Latest

No MSME loans as NPA in FY20 fiscal, PSBs to hold loan melas: FM

New Delhi, Sep 19 (IANS) In a public outreach exercise, Finance Minister Nirmala Sitharaman on Thursday said public sector banks...

Guterres likely to raise Kashmir at UNGA discussions

United Nations, Sep 20 (IANS) Secretary-General Antonio Guterres will use the opportunity of bilateral discussions with various leaders during the...

RBI revises norms for concurrent audit of banks

Mumbai, Sep 19 (IANS) The Reserve Bank of India has revised the norms of concurrent audit of banks whereby the...

Popular Today

Land acquisition for PM Modi’s bullet train project cleared by Gujrat HC

Ahmedabad, Sep 19 (IANS) The Gujarat High Court on Thursday gave full clearance to the Prime Minister Narendra Modi's ambitious...

‘Delhi is first state to have 95 pc CNG-powered industries’

New Delhi, Sep 19 (IANS) About 95 per cent of the oil-driven industry in Delhi has been shifted its operations...

RBI revises norms for concurrent audit of banks

Mumbai, Sep 19 (IANS) The Reserve Bank of India has revised the norms of concurrent audit of banks whereby the...
India Updates
India Updates is an independent news & Information website. Follow us for regular updates on News and Information.

Hackers access files of US-based cyber security firmSan Francisco, July 28 (IANS) Using an email address and password mistakenly exposed on the Internet, a hacker gained access to the internal files of US-based cyber security company Comodo, bringing the credibility of the company under question.

The credentials were found in a public GitHub repository owned by a Comodo software developer, TechCrunch reported on Saturday.

- Advertisement -

The account was not protected with two-factor authentication and with the email address and password in hand, the hacker could enter the company’s Microsoft-hosted Cloud services.

The leaked credentials were discovered by a Netherlands-based security researcher Jelle Ursem who reached out to Comodo Vice-President Rajaswi Das.

According to Ursem, the account allowed him to access internal Comodo files, including sales documents and spreadsheets in the company’s OneDrive and the company’s organisation graph on SharePoint, allowing him to see the team’s biographies, contact information, like phone numbers and email addresses, photos, customer documents and calendar.

Screenshots of folders containing agreements and contracts with several customers — with names of customers in each filename, such as hospitals and US state governments.

“Seeing as they’re a security company and give out Secure Sockets Layer (SSL) certificates, you’d think the security of their own environment would come above all else,” the report quoted the Userm as saying.

Earlier this year Ursem found a similarly exposed set of internal Asus passwords on an employee’s GitHub public account.

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Must Read

FM may release sops for realty, export sectors

New Delhi, Sep 14 (IANS) Finance Minister Nirmala Sitharaman is scheduled to announce further relief measures for the economy on...

Eros Now and Microsoft joins hand to develop online video platform

Mumbai, Sep 19 (IANS) Over-the-top (OTT) video platform Eros Now on Thursday joined hands with Microsoft to build a next-generation online video platform on the...

‘Delhi is first state to have 95 pc CNG-powered industries’

New Delhi, Sep 19 (IANS) About 95 per cent of the oil-driven industry in Delhi has been shifted its operations to CNG, making the national...

Soha Ali Khan: Parenthood brought change in my habits

Mumbai, Sep 19 (IANS) Bollywood actress and author Soha Ali Khan has lent support for a new health awareness campaign, and says that since the...

RBI revises norms for concurrent audit of banks

Mumbai, Sep 19 (IANS) The Reserve Bank of India has revised the norms of concurrent audit of banks whereby the apex bank has capped the...

More Articles Like This