Sunday, May 16, 2021
Home Lead Story Hackers Gain Access to Internal Files of US-Based Cyber Security Company

Hackers Gain Access to Internal Files of US-Based Cyber Security Company

According to Ursem, the account allowed him to access internal Comodo files, including sales documents and spreadsheets in the company's OneDrive

Using an email address and password mistakenly exposed on the Internet, a hacker gained access to the internal files of US-based cyber security company Comodo, bringing the credibility of the company under question.

The credentials were found in a public GitHub repository owned by a Comodo software developer, TechCrunch reported on Saturday. The account was not protected with two-factor authentication and with the email address and password in hand, the hacker could enter the company’s Microsoft-hosted Cloud services. The leaked credentials were discovered by a Netherlands-based security researcher Jelle Ursem who reached out to Comodo Vice-President Rajaswi Das.

According to Ursem, the account allowed him to access internal Comodo files, including sales documents and spreadsheets in the company’s OneDrive and the company’s organisation graph on SharePoint, allowing him to see the team’s biographies, contact information, like phone numbers and email addresses, photos, customer documents and calendar.

hackers, cyber security
According to Ursem, the account allowed him to access internal Comodo files, including sales documents and spreadsheets in the company’s OneDrive. Pixabay

ALSO READ: Email Attacks: IT Professionals Struggle in Spotting Suspicious Emails

Screenshots of folders containing agreements and contracts with several customers — with names of customers in each filename, such as hospitals and US state governments.

“Seeing as they’re a security company and give out Secure Sockets Layer (SSL) certificates, you’d think the security of their own environment would come above all else,” the report quoted the Userm as saying. Earlier this year Ursem found a similarly exposed set of internal Asus passwords on an employee’s GitHub public account. (IANS)

STAY CONNECTED

19,509FansLike
362FollowersFollow
1,773FollowersFollow

Most Popular

The Unsolved Mystery Of “The Bermuda Triangle”

By- Khushi Bisht The Bermuda Triangle, also known as the Devil's Triangle is a mysterious section of the North Atlantic Ocean that is surrounded by...

The World’s Most Expensive Spices

BY- JAYA CHOUDHARY Spices as a commodity may be trivial, but their value in the kitchen is immeasurable. It is difficult to go back to...

Ashtottaram 51: OṀ PRIYAMVAƊABHŨMYAI NAMAH

BY-Devakinanda Pasupuleti  OṀ PRIYAMVAƊABHŨMYAI NAMAH:  OṀ (AUM)-PRI-YAM-VA-DA-BHOO-MYAI—NA-MA-HA  ॐ प्रियम्वदभूम्यै नमः                                   (Priyam: Desired, pleasant, truthful, satyam, kindly; Vada: speaking) In Sanskrit, there are many meanings for the word priyam including...

Sita’s Chitwan: “Life In A Forest Teaches One To Be Patient, Passionate”

Award-winning children's author Vaishali Shroff belongs to a family of wildlife enthusiasts. While her husband and children look for interesting sightings and topographies to...

The Coming Of New Bipolarity

The Cold War that ended three decades ago, inevitably left behind a legacy, existing even today, of a divide between the US-led West and...

Low & Regular-Dose Aspirin Proven Safe, Effective

An unusual study that had thousands of heart disease patients enroll themselves and track their health online as they took low- or regular-strength aspirin...

No Scarcity Of Workers In U.S. Anytime Soon

On the surface, the surprise announcement Thursday from the U.S. Centers for Disease Control and Prevention that it would reverse mask mandates and limits...

Experts: Uncontrolled Diabetes Main Cause Of Black Fungus

Uncontrolled diabetes is emerging as a major factor in acquiring black fungus infection or mucormycosis, which is surfacing in Covid-19 patients after recovery and...

Recent Comments