100,000 npm User Credentials Stolen in GitHub Breach
SecureWorld News
MAY 31, 2022
Greg Ose, Senior Director for Product Security Engineering at GitHub, said this about the incident: "On April 12, GitHub Security began an investigation that uncovered evidence that an attacker abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis CI, to download data from dozens of GitHub.com organizations.
Let's personalize your content