12 Million exposed .env files reveal widespread security failures

Mysterium VPN found 12M IPs exposing .env files, leaking credentials and revealing widespread security misconfigurations worldwide. Configuration mistakes rarely trigger alarms. A forgotten deny rule, an overlooked server setting, or a full project folder uploaded to production can quietly expose a company’s most sensitive secrets. In many cases, those secrets live inside simple environment files […]

• Home

• Cyber Crime

• Cyber warfare

• APT

• Data Breach

• Deep Web

• Hacking

• Hacktivism

• Intelligence

• Artificial Intelligence

• Internet of Things

• Laws and regulations

• Malware

• Mobile

• Reports

• Security

• Social Networks

• Terrorism

• ICS-SCADA

• Crypto

• Contact me

MUST READ

ShinyHunters leaked the full Odido dataset

Claude code abused to steal 150GB in cyberattack on Mexican agencies

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 86

CVE-2025-64328 exploitation impacts 900 Sangoma FreePBX instances

Security Affairs newsletter Round 565 by Pierluigi Paganini – INTERNATIONAL EDITION

Canadian Tire 2025 data breach impacts 38 million users

Microsoft warns of RAT delivered through trojanized gaming utilities

Aeternum botnet hides commands in Polygon smart contracts

iPhone and iPad are the first consumer devices cleared for NATO ‘RESTRICTED’ classification

Juniper issues emergency patch for critical PTX router RCE

How AI Aids Incident Response: Why Humans Alone Cannot Do IR Efficiently

12 Million exposed .env files reveal widespread security failures

ManoMano data breach impacted 38 Million customer accounts

Trend Micro fixes two critical flaws in Apex One

UAT-10027 campaign hits U.S. education and healthcare with stealthy Dohdoor backdoor

U.S. CISA adds Cisco SD-WAN flaws to its Known Exploited Vulnerabilities catalog

Hackers abused Cisco SD-WAN zero-day since 2023 to gain full admin control

Google GTIG disrupted China-linked APT UNC2814 halting attacks on 53 orgs in 42 countries

Untrusted repositories turn Claude code into an attack vector

ShinyHunters cyberattack on CarGurus impacts 12.4 Million users

• Home

• Cyber Crime

• Cyber warfare

• APT

• Data Breach

• Deep Web

• Hacking

• Hacktivism

• Intelligence

• Artificial Intelligence

• Internet of Things

• Laws and regulations

• Malware

• Mobile

• Reports

• Security

• Social Networks

• Terrorism

• ICS-SCADA

• Crypto

• Contact me

• Home

• Breaking News

• Data Breach

• Hacking

• Security

• 12 Million exposed .env files reveal widespread security failures

12 Million exposed .env files reveal widespread security failures

** Pierluigi Paganini
** February 27, 2026

Mysterium VPN found 12M IPs exposing .env files, leaking credentials and revealing widespread security misconfigurations worldwide.

Configuration mistakes rarely trigger alarms. A forgotten deny rule, an overlooked server setting, or a full project folder uploaded to production can quietly expose a company’s most sensitive secrets. In many cases, those secrets live inside simple environment files known as .env files.

Researchers at Mysterium VPN identified 12,088,677 IP addresses serving publicly accessible .env-style files.

[...]

Original source