Secureworks: Combining Social Engineering Attacks in a Cyber Kill Chain
Dev & Ops teams from large organizations use thousands of secrets like API keys and other credentials in order to interconnect the building blocks of their applications. As a result, they now have access to more sensitive information than companies can keep track of. The risk is that these secrets are now spreading everywhere. In this whitepaper, we look at the implications of secret sprawl, and present solutions for Application Security to further secure the SDLC by implementing automated secrets detection in their DevOps pipeline.