Many top-level open source projects have been found leaking GitHub auth tokens, putting entire projects at risk of data theft and malicious code tampering. Cybersecurity researchers from Unit 42 ...
It has been discovered that GitHub authentication tokens have been leaked from several well-known open source projects on GitHub, including those from Google, Microsoft, Amazon Web Services (AWS), and ...
Hackers breached sales automation platform Salesloft to steal OAuth and refresh tokens from its Drift chat agent integration with Salesforce to pivot to customer environments and exfiltrate data. The ...
GreyNoise saw a significant increase in scanning activity IPs from Singapore are looking for exposed Git config files, also in Singapore The files could contain sensitive information such as login ...
GitHub shared the timeline of breaches in April 2022, this timeline encompasses the information related to when a threat actor gained access and stole private repositories belonging to dozens of ...
The Register on MSN
Shai-Hulud worm returns, belches secrets to 25K GitHub repos
Trojanized npm packages spread new variant that executes in pre-install phase, hitting thousands within days A ...
Research by Wiz shows that industry titans, with combined valuations exceeding $400 billion, have left the equivalent of ...
GitHub has enabled push protection by default for all public repositories to prevent accidental exposure of secrets such as access tokens and API keys when pushing new code. Today's announcement comes ...
GitHub is urging its base of users to enable two-factor authentication as the platform shakes up how it protects accounts from compromise. Everyone needs a password manager. If you're willing to pay a ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback