2,622 Valid Certificates Exposed: A Google-GitGuardian Study Maps Private Key Leaks to Real-World Risk

A Google-GitGuardian study found 2,622 valid certificates exposed due to private key leaks on GitHub and DockerHub. This poses a critical threat to TLS security, allowing attackers to impersonate websites and intercept data. The study revealed a widespread misunderstanding of private key risks, with only 54 out of 4,300 organizations responding to disclosure emails. It's essential to understand the real-world impact of private key leaks and take prompt action to revoke exposed certificates.