• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
github notifies victims whose private data was accessed using oauth

Github Notifies Victims Whose Private Data Was Accessed Using OAuth Tokens

You are here: Home / General Cyber Security News / Github Notifies Victims Whose Private Data Was Accessed Using OAuth Tokens
April 19, 2022

GitHub on Monday mentioned that it experienced notified all victims of an attack marketing campaign, which included an unauthorized party downloading personal repository contents by taking benefit of 3rd-party OAuth consumer tokens maintained by Heroku and Travis CI.

“Consumers should also proceed to check Heroku and Travis CI for updates on their individual investigations into the impacted OAuth applications,” the firm reported in an current write-up.

The incident initially arrived to mild on April 12 when GitHub uncovered symptoms that a destructive actor experienced leveraged the stolen OAuth person tokens issued to Heroku and Travis-CI to download data from dozens of organizations, such as NPM.

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


CyberSecurity

The Microsoft-owned platform also mentioned that it will notify shoppers instantly need to the ongoing investigation discover supplemental victims. Also, it cautioned that the adversary may possibly also be digging into the repositories for insider secrets that could be utilized in other attacks.

Heroku, which has pulled aid for GitHub integration in the wake of the incident, suggested that buyers have the option of integrating their application deployments with Git or other model management providers this sort of as GitLab or Bitbucket.

Hosted constant integration company company Travis CI, in a identical advisory revealed on Monday, mentioned that it had “revoked all authorization keys and tokens avoiding any even further access to our units.”

CyberSecurity

Stating that no purchaser information was exposed, the corporation acknowledged that the attackers breached a Heroku support and accessed a personal application’s OAuth important that is used to integrate both the Heroku and Travis CI applications.

But Travis CI reiterated that it located no proof of intrusion into a non-public purchaser repository or that the menace actors received unwarranted resource code entry.

“Provided the info we had and out of an abundance of caution, Travis CI revoked and reissued all private buyer auth keys and tokens integrating Travis CI with GitHub to guarantee no client details is compromised,” the firm explained.

Discovered this short article exciting? Comply with THN on Fb, Twitter  and LinkedIn to read extra unique written content we write-up.


Some areas of this posting are sourced from:
thehackernews.com

Previous Post: «cyberattackers put the pedal to the medal: podcast Cyberattackers Put the Pedal to the Medal: Podcast
Next Post: FBI, U.S. Treasury and CISA Warns of North Korean Hackers Targeting Blockchain Companies fbi, u.s. treasury and cisa warns of north korean hackers»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • WhatsApp Unveils Proxy Support to Tackle Internet Censorship
  • Hackers Using CAPTCHA Bypass Tactics in Freejacking Campaign on GitHub
  • Blind Eagle Hacking Group Targets South America With New Tools
  • US Family Planning Non-Profit MFHS Confirms Ransomware Attack
  • Microsoft Reveals Tactics Used by 4 Ransomware Families Targeting macOS
  • Dridex Malware Now Attacking macOS Systems with Novel Infection Method
  • Cyber attacks on UK organisations surged 77% in 2022, new research finds
  • WhatsApp to combat internet blackouts with proxy server support
  • The IT Pro Podcast: Going passwordless
  • Podcast transcript: Going passwordless

Copyright © TheCyberSecurity.News, All Rights Reserved.