PSA: Saving passwords in public Trello boards is a really, really bad idea

May 10, 2018 Matthew Hughes


If you put something on a publicly-accessible webpage, you should assume that it can (and eventually will) be read by another person. By that, I mean don’t put things you’d want to keep secret — like passwords and API credentials — in places where someone might eventually find them. Sounds obvious, right? That’s because it is. That said, one security researcher stumbled upon a troubling trend of organizations storing sensitive credentials in Trello documents, no less. An attacker could easily find these with little more than a Google query. The researcher, Kushagra Pathak, found a veritable treasure-trove of credentials. These…

This story continues at The Next Web

Previous Article
US television is going gaga over cryptocurrencies
US television is going gaga over cryptocurrencies

While Bitcoin has been sporadically mentioned on US TV over the past few years, focus has shifted to the br...

Next Article
How to try Google’s 6 new Assistant voices now
How to try Google’s 6 new Assistant voices now

If you use Google Assistant a lot and have tired of the default voice that responds to your commands, you n...