Binance Data Including Code, Internal Passwords Leaked on GitHub: Report

Share via:


A collection of sensitive material belonging to crypto exchange Binance, including code and internal passwords, was reportedly leaked on GitHub—where it was publicly available for months.

According to 404 Media, the material, posted by an account called “Termf,” included code, infrastructure diagrams, internal passwords, and other technical information. Some code available on the site is reportedly related to Binance’s implementation of security measures, including passwords and multi-factor authentication (MFA).

Other material apparently included passwords for systems marked “prod,” which were likely to have been used as part of the live site rather than development or demonstration environments.

The data was removed from GitHub following a copyright takedown request by Binance last week, confirming that the data contained code belonging to the exchange. The material was available to view since at least January 5, when 404 Media contacted the exchange regarding the leaks.

A redacted screenshot showing Binance code leaked to GitHub. Source: 404 Media

In its copyright takedown request, Binance said the leak consisted of internal code that “poses significant risk to Binance. and causes severe financial harm to Binance and user’s confusion/harm.”

In a statement, a spokesperson for Binance said that it was aware of the leak and that its security team had “assessed this claim and confirmed that it does not resemble what we currently have in production.” They added that “users should rest assured that their data and assets remain safe on our platform.” Binance further claimed that the leaked information “posed negligible risk to the security of our users, their assets, or our platform.”

Decrypt has reached out to Binance and will update this story should the exchange respond.

Edited by Ryan Ozawa.

Stay on top of crypto news, get daily updates in your inbox.



Source link

Disclaimer

We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.

Popular

More Like this

Binance Data Including Code, Internal Passwords Leaked on GitHub: Report


A collection of sensitive material belonging to crypto exchange Binance, including code and internal passwords, was reportedly leaked on GitHub—where it was publicly available for months.

According to 404 Media, the material, posted by an account called “Termf,” included code, infrastructure diagrams, internal passwords, and other technical information. Some code available on the site is reportedly related to Binance’s implementation of security measures, including passwords and multi-factor authentication (MFA).

Other material apparently included passwords for systems marked “prod,” which were likely to have been used as part of the live site rather than development or demonstration environments.

The data was removed from GitHub following a copyright takedown request by Binance last week, confirming that the data contained code belonging to the exchange. The material was available to view since at least January 5, when 404 Media contacted the exchange regarding the leaks.

A redacted screenshot showing Binance code leaked to GitHub. Source: 404 Media

In its copyright takedown request, Binance said the leak consisted of internal code that “poses significant risk to Binance. and causes severe financial harm to Binance and user’s confusion/harm.”

In a statement, a spokesperson for Binance said that it was aware of the leak and that its security team had “assessed this claim and confirmed that it does not resemble what we currently have in production.” They added that “users should rest assured that their data and assets remain safe on our platform.” Binance further claimed that the leaked information “posed negligible risk to the security of our users, their assets, or our platform.”

Decrypt has reached out to Binance and will update this story should the exchange respond.

Edited by Ryan Ozawa.

Stay on top of crypto news, get daily updates in your inbox.



Source link

Disclaimer

We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.

Website Upgradation is going on for any glitch kindly connect at office@startupnews.fyi

More like this

CynLr Raises $10 Mn To Automate Manufacturing Processes

SUMMARY CynLr aims to bolster its research & development...

Printful and Printify ink a merger deal

Two veteran European companies in the world of...

Infra.Market’s FY24 Profit Crosses INR 350 Cr

SUMMARY The IPO-bound startup has reported a profit of...

Popular

Upcoming Events

Startup Information that matters. Get in your inbox Daily!