Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,198
- Points
- 113
The company is working with law enforcement agencies to investigate the incident.
Rabbit has identified the cause of a large-scale data leak that occurred in May 2024. According to a statement on the company's official website, the former employee gave confidential API keys to a group of hacktivists, who then claimed access to the internal source code of Rabbit.
According to the company, after the leak was discovered, the employee was immediately fired. Rabbit promptly revoked and updated all compromised keys, as well as moved secret data to a more secure AWS Secrets Manager storage.
The company stressed that the leak was not due to hacking of their security systems, but due to illegal actions of a former employee. Rabbit is currently working with law enforcement to investigate further.
In response to the incident, Rabbit initiated a large-scale review of its security systems. For this purpose, experts from Obscurity Labs were involved, who conducted penetration testing, analyzing the security of data transmission methods and potential vulnerabilities.
The results of the audit, published by Obscurity Labs, confirmed that there are no serious vulnerabilities in the company's systems. The AI's source code and confidential information were not compromised.
Rabbit management said that the multi-layered approach to security has proven to be effective. However, the company will continue to improve its security protocols and actively collaborate with industry experts to identify and address potential risks.
To strengthen security measures, Rabbit announced the creation of an official Vulnerability Disclosure Policy. This initiative will provide a reliable mechanism for reporting security issues and accelerate their resolution.
Source
Rabbit has identified the cause of a large-scale data leak that occurred in May 2024. According to a statement on the company's official website, the former employee gave confidential API keys to a group of hacktivists, who then claimed access to the internal source code of Rabbit.
According to the company, after the leak was discovered, the employee was immediately fired. Rabbit promptly revoked and updated all compromised keys, as well as moved secret data to a more secure AWS Secrets Manager storage.
The company stressed that the leak was not due to hacking of their security systems, but due to illegal actions of a former employee. Rabbit is currently working with law enforcement to investigate further.
In response to the incident, Rabbit initiated a large-scale review of its security systems. For this purpose, experts from Obscurity Labs were involved, who conducted penetration testing, analyzing the security of data transmission methods and potential vulnerabilities.
The results of the audit, published by Obscurity Labs, confirmed that there are no serious vulnerabilities in the company's systems. The AI's source code and confidential information were not compromised.
Rabbit management said that the multi-layered approach to security has proven to be effective. However, the company will continue to improve its security protocols and actively collaborate with industry experts to identify and address potential risks.
To strengthen security measures, Rabbit announced the creation of an official Vulnerability Disclosure Policy. This initiative will provide a reliable mechanism for reporting security issues and accelerate their resolution.
Source
