In 2020, a major financial services firm accidentally pushed a debug.log file to a public GitHub repository. The file contained live AWS access keys and Facebook API secrets. A security researcher using a query similar to allintext "AKIA" filetype:log discovered the leak within 4 hours of the commit. The company had to rotate over 200 credentials and issue a public breach notice.
While our focus keyword includes “facebook”, the same logic applies to any platform: allintext username filetype log password.log facebook
Enable 2FA on your accounts, including Facebook, to add an extra layer of security. In 2020, a major financial services firm accidentally