A new leak is raising questions about the security measures taken by large companies. The source code of the software used by more than 50 organizations in the area of technology, trade and finance has been exposed in an online repository open to the public.
The repository contains multiple confidential information from technological giants: from Microsoft Motorola, to Adobe, Lenovo, AMD, Qualcomm and Mediatek. Highlights also include data on Nintendo's recent leak, known to Internet users as Gigaleak.
Behind the leak of information published on GitLab is Tillie Kottmann, a Swiss developer who set out to discover flaws in DevOps tools that give access to the source code in collaboration with other internet users.
In an interview with the BleepingComputer website, Tillie said that she tries not to publish information that could compromise certain individuals and that she seeks to eliminate or censor any credentials present before making the code public.
However, according to Bank Security researchers, a group specializing in banking threats and fraud, the source code of several banks and fintechs present in the repository has multiple hidden credentials.
Although she does not always contact the target organizations before the code is published, Tillie says she is committed to eliminating information upon any removal request by companies.
The Gigaleak that exposed Nintendo's secrets
Recently, a leak of information about various Nintendo gaming prototypes has sparked the attention of the gaming world. According to the Polygon website, in late July, several 4chan users started publishing source code and classic game development repositories from the Japanese manufacturer for SNES, Nintendo 64 and Game Boy.
Gigaleak includes data on titles such as Super Mario Kart, The Legend of Zelda: A Link to the Past, and Yoshis Island. The multiple images and videos found began to circulate quickly over the Internet, revealing models, levels and other elements that were not used, as well as games that have never been commercialized.
For now, Nintendo has not yet confirmed the veracity of the information shared by Internet users on social networks. Porm Dylan Cuthbert, game developer for the popular Star Fox saga, confirmed that one of the tools discovered is true.
The leak may also contain private information, including conversations between programmers. Although Gigaleak may mean that the video game industry will begin to take tighter measures to prevent similar incidents in the future, netizens remain enthusiastic about the findings and the publication of more details is expected to continue.