Tencent Cloud Subdomains Expose Credentials, Code Since April 2025

Tencent Cloud suffered a major security lapse, with misconfigured subdomains exposing sensitive credentials and source code since April 2025, risking unauthorized access to backend systems. This incident, echoing past breaches, highlights vulnerabilities in cloud management. It underscores the need for zero-trust architectures and automated scanning to prevent future risks.