Cloud security firm Orca has warned that command-line tools used by major cloud service providers such as Microsoft Azure, AWS, and Google Cloud can expose sensitive information in the form of environment variables in build log files.
While the vulnerability was initially discovered in the Azure CLI last year, Orca later discovered that the same issue, LeakyCLI, also impacts AWS and Google Cloud CLI tools.
However, AWS and Google Cloud have described it as “expected behavior,” but customers can take steps to prevent the exposure of sensitive data.
Read more – Cloud Users Warned of Data Exposure Risk From Command-Line Tools
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
