LATE REGISTRATION RATES FOR #HITB2014KUL STARTS ON THE 1ST OF OCTOBER ONWARDS!

REGISTER ONLINE NOW

 

Hands-on Technical Trainings - 13th & 14th October

http://conference.hitb.org/hitbsecconf2014kul/#tile_schedule

Triple-Track Conference - 15th & 16th October

http://conference.hitb.org/hitbsecconf2014kul/conference-speakers/

 

Capture the Flag - 15th & 16th October

http://conference.hitb.org/hitbsecconf2014kul/capture-the-flag/

HackWEEKDAY - 15th & 16th October

http://conference.hitb.org/hitbsecconf2014kul/hackweekday/

CommSec Village - 15th & 16th October

http://conference.hitb.org/hitbsecconf2014kul/commsec-village/

Github Search Exposes Passwords

http://en.wikipedia.org/wiki/GitHub

From the 'If you leave the keys out in the open it's your own fault' files:

Github rolled out a new search tool today making it easier to not just discover new projects, but code within projects. Think Google Code search (when it was alive, but better).

So the TL;dr version is – awesome power. But as Spiderman taught me a long time ago, with great power comes great responsibility. My friend and all around beacon of bodacious knowledge Carla Schroder (@CarlaSchroder) pointed out to me that there is no shortage of embedded private SSH keys and passwords that can easily be found. This is a problem that a few people have now noticed and a simple search can easily pull up more results than I care to count.