http://2nppw77ejbql5xyflkmu4awrxze2gfl57wj5l3sqzuecsa7lwra7i4ad.onion/1900/attackers-exploit-public-breach-accounts-extortion-campaign
"Multiple security missteps were present in the course of this campaign, including the following: Exposing environment variables, using long-lived credentials, and absence of least privilege architecture," Palo Alto Networks Unit 42 said in a Thursday report.