Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://cyberplace.social/users/GossiTheDog/statuses/114391595818003275">Kevin Beaumont (gossithedog@cyberplace.social)'s status on Thursday, 24-Apr-2025 15:47:24 JST</a><a href="https://cyberplace.social/@GossiTheDog" title="gossithedog@cyberplace.social"><img src="https://gnusocial.jp/avatar/38360-48-20250225114715.webp" width="48" height="48" alt="Kevin Beaumont" style="position: absolute; left: 0; top: 0;">Kevin Beaumont</a><div><a href="https://cyberplace.social/@GossiTheDog/114391579000517894" rel="in-reply-to">in reply to</a></div></section><article><p>Translation with this one - everybody is busy worrying about AI while all their documentation about their systems and risks are in JIRA, Confluence, SharePoint etc that attackers just read. </p><p>“Mandiant security assessments often identify sensitive data residing in readily accessible document repositories.<br>Network file shares, SharePoint sites, Jira instances, Confluence spaces, and GitHub repositories often contain<br>a wealth of valuable information” </p><p>Todo: limit access to those who need the info</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4943635#notice-9686741">In conversation</a><time datetime="2025-04-24T15:47:24+09:00" title="Thursday, 24-Apr-2025 15:47:24 JST">about a month ago</time> <span>from <span><a href="https://cyberplace.social/@GossiTheDog/114391595818003275" rel="external" title="Sent from cyberplace.social via ActivityPub">cyberplace.social</a></span></span><a href="https://cyberplace.social/@GossiTheDog/114391595818003275">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/4516222">Untitled attachment</a></label><br><a href="https://cyberplace.social/system/media_attachments/files/114/391/595/578/542/883/original/89b2dbde8c29660c.jpeg" rel="external">https://cyberplace.social/system/media_attachments/files/114/391/595/578/542/883/original/89b2dbde8c29660c.jpeg</a></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Kevin Beaumont (gossithedog@cyberplace.social)'s status on Thursday, 24-Apr-2025 15:47:24 JST Kevin Beaumont
in reply to
Translation with this one - everybody is busy worrying about AI while all their documentation about their systems and risks are in JIRA, Confluence, SharePoint etc that attackers just read.
“Mandiant security assessments often identify sensitive data residing in readily accessible document repositories.
Network file shares, SharePoint sites, Jira instances, Confluence spaces, and GitHub repositories often contain
a wealth of valuable information”
Todo: limit access to those who need the info
In conversationabout a month ago from cyberplace.socialpermalink
Attachments
1. Untitled attachment
  https://cyberplace.social/system/media_attachments/files/114/391/595/578/542/883/original/89b2dbde8c29660c.jpeg

Public

Embed Notice

HTML Code

Corresponding Notice