GitHub says an attacker used stolen OAuth user tokens issued to Heroku and Travis-CI to download data from private repositories belonging to npm and other orgs (Sergiu Gatlan/BleepingComputer)




Sergiu Gatlan / BleepingComputer:

GitHub says an attacker used stolen OAuth person tokens issued to Heroku and Travis-CI to obtain knowledge from personal repositories belonging to npm and different orgs  —  GitHub revealed in the present day that an attacker is utilizing stolen person tokens (issued to Heroku and Travis-CI OAuth) to obtain knowledge from personal repositories.





Source link