Some finance apps included development/staging details, yes. We didn't find any secrets from traditional finance firms (I expect this is more a function of them not using cloud services as much as other industries at this point in time).
One of the worst offenders in our sample was fintech companies, with obviously no real pentesting being done on the client side at least.
One of the worst offenders in our sample was fintech companies, with obviously no real pentesting being done on the client side at least.