GitHub Says Hackers Breached Dozens of Organizations Using Stolen OAuth Access Tokens

15-Apr-22

(1)On Friday, GitHub, a cloud-based repository hosting service, disclosed that it had identified evidence of an unnamed adversary using stolen OAuth user credentials to illegally extract sensitive data from a number of organisations. (2)In a report, GitHub’s Mike Hanley stated, “An attacker leveraged stolen OAuth user tokens supplied to two third-party OAuth integrators, Heroku and Travis-CI, to obtain data from dozens of firms, including NPM.” Read More…