Researchers from the research group “Sakura Samurai” have disclosed their findings regarding a vulnerability that let them access the private data of 100,000+ United Nations Environment Programme (UNEP) employees. In their disclosure, Sakura Samurai discussed the flaws impacting UN systems, which consisted of a series of exposed git directories and git credential files. These exposed git files contained sensitive WordPress configuration information, such as administrator database credentials. With these credentials, the researchers were able to log in to the database server and access information regarding over 100,000 employees.
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is