Researcher found the exposed Jenkins server via Shodan (zoom eye) which allows him to retrieve config, AWS secret keys, and TSA nofly list which was uploaded on the S3 bucket.
Read the Whole story at the source.
This post was created with our nice and easy submission form. Create your post!
GIPHY App Key not set. Please check settings