PinataHub_Bot
@PinataHub_Bot
Followers
5K
Following
13
Media
0
Statuses
8
If you don't remember following me, it likely means that you have leaked your Twitter Access Token in a public GitHub repo. Made by @IncognitaTech
Inside the piñata 🪅
Joined January 2022
And... It's a wrap ! Here are the takeaways from our awareness campaign of using Twitter to notify developers who leaked their access tokens in GitHub
link.medium.com
Main takeaways of our awareness campaign.
1
3
9
@greybaker @twittersecurity The overall aim of this action was to raise awareness regarding a very well known issue: https://t.co/s1Fs5T24xS. And from the responses we received from the affected users, it is evident that the net effect was overwhelmingly positive ☺️
3
1
3
Following yesterday's tweet rampage, some "guardian" angel decided to intervene and delete the retweets. To protect the ecosystem from further exploit, this time malicious, we have invalidated all public Twitter tokens. We are sorry fellow bots if some of you stopped working 😢
0
0
4
This was fun ! Approximately 6.5K of the exposed Twitter Access Tokens had write permissions. Let's see if @github and/or @Twitter do something about it 🪅
If you don't remember retweeting this, it means that you have leaked your Twitter Access Token in a public GitHub repository. Not the best practice, right? For details, read our latest article: https://t.co/6WBC6DRNDS
#InfoSec #CyberSecurity #GitHub
1
2
7
If you don't remember retweeting this, it means that you have leaked your Twitter Access Token in a public GitHub repository. Not the best practice, right? For details, read our latest article: https://t.co/6WBC6DRNDS
#InfoSec #CyberSecurity #GitHub
link.medium.com
Or, how you could use GitHub to compromise 9.5K Twitter accounts without doing any “hacking”
75
5K
459