Source code of more than 50 leading technology companies in the world leaked

Tram Ho

The source code incidents of 50 companies including Microsoft, Adobe, Lenovo, AMD, Qualcomm, MediaTek, General Electric, Nintendo, Disney and Huawei HiSilicon … leaked are becoming the focus of this morning, July 29.

Mã nguồn của hơn 50 công ty công nghệ hàng đầu thế giới bị rò rỉ - Ảnh 1.

The source code is collected by developer / engineer Tillie Kottmann and publicly available in the GitLab repository. They are marked “Confidential” (top secret) and “Confidential and proprietary” (confidential and proprietary).

According to information provided by security researcher Bank Security, the repository contains the source code of more than 50 companies, some empty directories and some with hard-coded information, a way to create backtime.

In addition, developer Tillie Kottmann said in an interview that he withdrew the source code because of the company’s proprietary information disclosure due to insecure DevOps applications.

As far as the incidents go, many security experts say losing control of the source code on the Internet is like giving a bank design to a thief.

Currently, Kottmann has removed the code at the request of some companies. For example, Daimler AG, the parent company of Mercedes-Benz, Lenovo’s folders are also empty. For companies that require code removal, Kottmann expresses a willingness to comply and is willing to provide information to “help companies enhance their infrastructure security.”

In fact, judging from the number of DMCA notices received (estimated to be 7 at most) and the legal representative’s contact, many companies are still unaware of the code leak. There are also some companies that have no intention of deleting the code and some even think it is “very interesting” and just want to know how Kottmann got these code.

Ilia Kolochenko, founder and CEO of cybersecurity firm ImmuniWeb, has another view: “From a technical standpoint, leakage is not a big deal. When tested, most of the source code is worthless. Unless you have some other technology. In addition, the source code will quickly depreciate without daily support and improvement. Therefore, unhealthy competitors can get great value unless they only focus on one very specific software. ”

According to Phoenix

Share the news now

Source : Genk