Plus AWS creds, public-facing S3 buckets packed with info Chinese drone maker DJI left the private key for its dot-com’s HTTPS certificate exposed on GitHub for up to four years, according to a researcher who gave up with the biz’s bug bounty process.…

Leave a Reply