50k Spam Emails and 3am Panic: What Happened When I Forgot About a Side Project
a day ago
- #docker
- #cybersecurity
- #side-projects
- Forgotten side project with outdated Livewire led to a hack, resulting in 50,000 spam emails sent via stolen Mailcoach API keys.
- Docker container limited the attack's blast radius, preventing access to other projects or the host system.
- Evidence was lost after quickly shutting down the compromised container, but reverse proxy logs showed automated scanning and rapid exploitation.
- Mailcoach proactively detected the spam, suspended submissions, and waived charges, demonstrating excellent provider support.
- Implemented changes like automated dependency alerts, project reviews, stricter API token scopes, and better monitoring strategies.
- Highlights the risk of dormant projects with outdated dependencies and the need for proactive maintenance or shutdown.