Source |
Security Affairs |
Identifiant |
4467924 |
Date de publication |
2022-04-17 14:58:53 (vue: 2022-04-17 15:05:12) |
Titre |
Stolen OAuth tokens used to download data from dozens of organizations, GitHub warns |
Texte |
GitHub reported that threat actors used stolen OAuth user tokens to exfiltrate private data from several organizations. GitHub uncovered threat actors using stolen OAuth user tokens to gain access to their repositories and download private data from several organizations. Threat actors abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, […]
|
Envoyé |
Oui |
Condensat |
abused access actors data download dozens exfiltrate from gain github heroku integrators issued oauth organizations party private reported repositories several stolen third threat tokens travis two uncovered used user using warns |
Tags |
Threat
|
Stories |
|
Notes |
|
Move |
|