Never miss a story

Get subscribed to our newsletter


×
FBI has issued an alert regarding the hacking of source code. Pixabay

The US Federal Bureau of Investigation (FBI) has issued a security alert saying threat actors have stolen source code from government agencies and private firms and are abusing it to gain access to critical information.

The FBI alert warned the owners of SonarQube, a web-based application that companies integrate into their software build chains to test source code and discover security flaws before rolling outcode and applications into production environments.


The actors exploit known configuration vulnerabilities, allowing them to gain access to proprietary code, exfiltrate it, and post the data publicly. The FBI has identified multiple potential computer intrusions that correlate to leaks associated with SonarQube configuration vulnerabilities.

Follow NewsGram on Instagram to keep yourself updated.
“SonarQube apps are installed on web servers and connected to source code hosting systems like BitBucket, GitHub, or GitLab accounts, or Azure DevOps systems,” reports ZDNet. According to the FBI, some companies have left these systems unprotected, running on their default configuration with default admin credentials.

Hackers are abusing it to gain access to critical information. Pixabay

“In August 2020, unknown threat actors leaked internal data from two organizations through a public lifecycle repository tool. The stolen data was sourced from SonarQube instances that used default port settings and admin credentials running on the affected organizations’ networks,” the FBI said in the alert.

This activity is similar toa previous data leak in July 2020, in which an identified cyber actor exfiltrated proprietary source code from enterprises through poorly secured SonarQube instances and published the exfiltrated source code on a self-hosted public repository.

The FBI suggested the firms change the SonarQube default settings, including changing the default administrator username, password, and port (9000).

“Place SonarQube instances behind a login screen, and check if unauthorized users have accessed the instance and revoke access to any application programming interface keys or other credentials that were exposed in a SonarQube instance, if feasible,” the agency suggested. (IANS)


Popular

getty pictures

Divorce proceedings

Divorce is a hard fact in someone's life because it can affect all aspects of life like social, economic, and living status. Conditions become tougher if you have children. Recovering from divorce is also a painful process but good thing is that it is possible to get through it and place better in terms of both finances and emotions. The impact of divorce on finances can be life-lasting but taking precautions and thorough investigations of options can help a lot not only to save unnecessary costs but also some other hidden areas where you weren't aware. Following are some tips to save money during a divorce.

1.Avoid advice from everyone

Keep Reading Show less
ryunosuke kikuno/unsplash

Hosting the Olympics is an economic burden on host cities which mainly include construction delays, cost overruns, security issues, and environmental concerns.

By Saish

Gone are those days when people, sports enthusiasts, and governments lined up to host the Olympics. Hosting the Olympics, once seemed to be an immensely prideful event, but it has now transformed into an economic burden. Host cities grapple with a plethora of problems which mainly include construction delays, cost overruns, security issues, and environmental concerns.

Keep Reading Show less
ians

Tokyo Olympics 2020 Indian wrestler Ravi Kumar enter semi finals.

Indian wrestler Ravi Kumar (57kg) and Deepak Punia (86kg) enjoyed fruitful outings at the Tokyo Olympic Games as they secured semifinal berths in their respective weight categories at the Makuhari Messe on Wednesday.

On the opening day of the wrestling competition, Ravi Kumar defeated Bulgaria's Georgi Vangelov 14-4 on technical superiority to reach the last-four in the men's 57kg category, while compatriot Deepak Punia overcame China's Zushen Lin 6-3 on points to advance to the semifinals.

Ravi Kumar will take on Nurislam Sanayev of Kazakhstan in the last-four, while Punia will be up against David Morris Taylor of the USA.

Earlier, Ravi Kumar had won his opening-round bout by technical superiority against Colombia's Oscar Tigreros to secure a quarterfinal spot. Competing in the Round-of-16 bout against the Colombian wrestler, the 23-year-old Ravi Kumar, who is making his Olympic debut, showed no nerves as he dominated the bout to win by technical superiority (13-2).

Ravi Kumar landed attack after attack and went 13-2 up, winning the bout by technical superiority with minutes to spare. In wrestling, building up a 10-point lead over the opponent results in a victory by technical superiority.

India's 86kg freestyle wrestler Deepak Punia showed no signs of the niggle that had forced him to pull out of the Poland Open Ranking Series in Warsaw in June, as he defeated Nigeria's Ekerekeme Agiomor on technical superiority to secure a quarterfinal berth.

He got his Olympic campaign to a fine start as he was in control from the start of the bout and hardly ever allowed his Nigerian opponent any room to maneuver his moves, finally winning with a 12-1 on technical superiority.

Punia, who had also suffered an elbow injury just before the Games, was slow at the start but came into his own as the bout progressed, inflicting takedowns at regular intervals to earn points.

The Indian wrestler eased into a 4-1 lead at the break and extended his lead comfortably in the second period.

Punia, the silver medallist from the 2019 world wrestling championships, then set up a clash with China's Lin Zushen in the quarterfinals and defeated him 6-3.

(IANS/HP)