Nieuws

Salesloft says Drift customer data thefts linked to March GitHub account hack

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

GitHub supply chain attack sees thousands of tokens and secrets stolen in GhostAction campaign

Thousands of secrets such as PyPI and AWS keys, GitHub tokens, and more, were stolen recently during a supply-chain attack ...
Cyber Daily3d

Salesloft Drift hack dates back to a March compromise of the company’s GitHub account

Salesloft and Mandiant continue to investigate the hack that compromised some of the globe’s biggest cyber security firms, as ...
Bleeping Computer5mnd

GitHub Action hack likely led to another in cascading supply chain attack

The tj-actions developers cannot pinpoint exactly how the attackers compromised a GitHub personal access token (PAT) used by a bot to perform malicious code changes. Today, Wiz researchers think they ...
Computing2 j

Okta source code stolen in GitHub hack

Security provider Okta has been breached, with attackers apparently stealing the company's source code. Source code theft is no joke, especially when it comes to security products. Okta is a prominent ...
Infosecurity Magazine2d

Salesloft: GitHub Account Breach Was Ground Zero in Drift Campaign

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...
Ars Technica13 j

Hacker commandeers GitHub to prove Rails vulnerability

A Russian hacker dramatically demonstrated one of the most common security weaknesses in the Ruby on Rails web application language. By doing so, he took full control of the databases GitHub uses to ...
ZDNet6 j

A hacker is wiping Git repositories and asking for a ransom

The attacks started earlier today, appear to be coordinated across Git hosting services (GitHub, Bitbucket, GitLab), and it is still unclear how they are happening. What it is known is that the hacker ...