In recent times, countless security breaches have occurred as a result of human error by developers, who have mistakenly left vulnerabilities in their code open to exploitation.
These errors can include hardcoding sensitive data such as API keys, passwords, and tokens into public GitHub repositories, or leaving git repositories open, or misconfiguring debug endpoints.
The article highlights these errors and argues that hackers can find bounties of sensitive information by searching for these errors, using tools like TruffleHog to scan repositories, and checking if .git folders are accessible.
As developers are the first line of defence in cybersecurity, the author stresses the need for them to take more care and for companies to educate themselves and their staff on the importance of safeguarding sensitive data.