There have been a lot of data breaches due to unsecured ElasticSearch clusters. Whether these are default credentials or no credentials whatsoever I'm not sure.
We have various webhooks to reject any commit that has cloud credentials in it.
I think many systems would benefit from a simple guide to securing that system. If it's not possible to secure it in a simple way then it's a cue to improve the system design.
There are still a lot of tools out there that demand SA login. Some even have checks to make sure they have such elevated privilege. Bowen if you run a profile the actual privilege they use is basically db_datareader/db_datawriter at most