Sergiu Gatlan / BleepingComputer:

GitHub says an attacker used stolen OAuth user tokens issued to Heroku and Travis-CI to steal private repository data from dozens of organizations including npm  —  GitHub revealed today that an attacker is using stolen user tokens (issued to Heroku and Travis-CI OAuth) to download data from private repositories.





Source link

By admin

Leave a Reply

Your email address will not be published. Required fields are marked *