EMERALDWHALE Operation Exposes 15,000 Cloud Credentials, Clones 10,000 Repositories, Highlights Identity Threats

A significant cybersecurity breach, dubbed EMERALDWHALE, has led to the theft of over 15,000 cloud credentials by exploiting exposed Git configuration files. Researchers identified the operation as a widespread campaign that not only siphoned these credentials but also cloned approximately 10,000 private repositories. The findings highlight critical vulnerabilities in Git configurations, raising alarms about the potential for further identity fraud and cyberattacks. This incident is part of a broader trend of increasing attacks on enterprise identities, as noted in the Enterprise Identity Threat Report 2024, which reveals hidden threats to corporate identities. Additionally, a recent report by AU10TIX indicates a surge in social media attacks, emphasizing the evolving landscape of cybersecurity threats.