Friday, May 27, 2022

Nearly 100,000 NPM Users' Credentials Stolen in GitHub OAuth Breach

Cloud-based repository hosting service GitHub on Friday shared additional details into the theft of GitHub integration OAuth tokens last month, noting that the attacker was able to access internal NPM data and its customer information. "Using stolen OAuth user tokens originating from two third-party integrators, Heroku and Travis CI, the attacker was able to escalate access to NPM infrastructure
http://dlvr.it/SR9kLm
-

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

GISEC 2024 | Huawei HiSec SASE Solution Builds an Integrated Intelligent Security System for Global Enterprises - Huawei Enterprise

GISEC 2024 | Huawei HiSec SASE Solution Builds an Integrated Intelligent Security System for Global Enterprises  Huawei Enterprise http://...