Heroku_api in selvita.com

On 2020-04-17T10:01:02.760945+00:00 we found pattern Heroku_api, type: Suspicious, (Heroku API key may indicate data leak or accidental exposure) in the page https://selvita.com/wp-content/themes/s… referenced from http://selvita.com/ .

Code sample:

b'herokuapp.com/https://recruitment.elevato.net/services/v1/JobOffers?language=en-US&clients=3&limit=50","9BC50E8F-3EB3-420F-B1DB-0E4FFA1577BA",e="Bearer ".concat("9BC50E8F-3EB3-420F-B1DB-0E4FFA1577BA'

This feature is experimental so please feel free to contact us if you feel any of the reported issues is a false positive or you want to suggest a pattern that should be detected (we are using Yara standard).