Hackers Demonstrates Gathering Stolen Credentials Is as Easy as Scanning for Git Config Files
Recent campaign called “EmeraldWhale” snapped up over 15,000 stolen credentials simply by mass scanning for errant web configurations exposing Git config files to the public.