P4WNED:Perforce 的不安全默认设置暴露了互联网上的源代码
Perforce 版本控制系统默认配置存在安全漏洞,导致全球数千个服务器暴露源代码仓库,使攻击者能够访问敏感代码库。该漏洞源于默认安装时未启用身份验证,使得任何人都能通过互联网访问源代码。
相关报道
A 24-year-old British national and senior member of the cybercrime group "Scattered Spider" pleaded guilty to wire fraud conspiracy and aggravated identity theft. Tyler Robert Buchanan admitted to text-message phishing attacks in 2022 that allowed the group to hack major technology companies and steal tens of millions in cryptocurrency.