[rvz]

> "secure password"

Whatever that means.

This would never have happened in the first place had they used an encrypted complex password and a simple password manager.

The whole company takes the hit with blunders like this. It's everyone's fault responsible for the infrastructure allowing this to happen in the first place. Those who pass the blame on others very quickly are equally to blame which means the CEO is just as to blame as the 'intern'.

Clearly the whole company doesn't train their interns.

[frombody]

The password was coded into a file that was checked in to git.

The git repository just happened to be public.

It's entirely reasonable to think that the person in question possibly didn't even stop to think that Solarwinds123 was an actual secret that needed to be kept, as it is the equivalent of common passwords that are published publicly in manufacturer documentation.

[shoelessone]

I think the point is at no point is it acceptable to be in a position to be able to do something deeply damaging to a company with something as simple as a intern leaking a password. The intern should never been put in a position where this was even possible.

I’d say in all the ways that matters this was basically everybody BUT the interns fault.