The Less Understood Dangers of Secret Sprawl and What Devs Can Do to Fight It

Written by jean-GG | Published 2020/06/11
Tech Story Tags: security | devsecops | organization | data-breach | secrets-detection | steal-secrets | good-company | hackernoon-top-story

TLDR When developers refer to secret sprawl they are typically referring to the unwanted distribution of secrets across multiple platforms, services and machines. Having secrets on multiple services, email, Slack, git etc increases what is referred to as the 'attackable area’. This increases the amount of systems that could be exploited to find secrets. It only takes one compromised developer's git account, one compromised email or one compromised computer for an attacker to suddenly gain access to a trove of highly sensitive secrets. This is why developers and organizations alike often store secrets in unsecure locations.via the TL;DR App
no story
Published by HackerNoon on 2020/06/11
ABOUTHow hackers start their afternoons. We publish tech stories and build publishing software.

READEntirely free library read by hundreds of millions to learn anything about any technology.

WRITEHackerNoon elevates quality technology writing far and wide across the interwebs.

PARTNERHackerNoon works directly with tech companies to place ads by content relevancy