「Security alert: Attack campaign involving stolen OAuth user tokens issued to two third-party integrators | The GitHub Blog」

On April 12, GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, to download data from dozens of organizations, including npm. Read on to learn more about the impact to GitHub, npm, and our users.

On April 12, GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, to download data from dozens of organizations, including npm. Read on to learn more about the impact to GitHub, npm, and our users.

github.blog

Webページ

コンテンツ文字数:0 文字

見出し数(H2/H3タグ):0 個

閲覧数:80 件

2022-04-16 14:30:44

オリジナルページを開く

B!

タグ一覧
Security
alert
Attack
campaign
involving
stolen
OAuth
user
tokens
issued
to
two
third-party
integrators
The
GitHub
BlogOn
April
12
began
an
investigation
that
uncovered
evidence
attacker
abused
Heroku
and
Travis-CI
download
data
from
dozens
of
organizations
including
npm
Read
on
learn
more
about
the
impact
our
users
integratorsMore
Related
posts
Product
Platform
Support
Company
※読み込みに時間がかかることがあります