all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CircleCI's hack caused by malware stealing engineer's 2FA-backed session

Add to bookmarks
Jan. 14, 2023, 10:28 p.m. | Lawrence Abrams

BleepingComputer www.bleepingcomputer.com

Hackers breached CircleCi in December after an engineer became infected with information-stealing malware that stole the employee's 2FA-backed SSO session, allowing access to the company's internal systems. [...]

2fa access breached circleci december employee engineer hack hackers information internal malware security session sso stealing systems the company

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

CEO who sold fake Cisco devices to US military gets 6 years in prison 16 hours ago | www.bleepingcomputer.com
ceo cisco companies counterfeit +14
Bitwarden launches new MFA Authenticator app for iOS, Android 17 hours ago | www.bleepingcomputer.com
android android devices app authenticator +12
CISA urges software devs to weed out path traversal vulnerabilities 18 hours ago | www.bleepingcomputer.com
cisa companies fbi path +9
Police shuts down 12 fraud call centres, arrests 21 suspects 19 hours ago | www.bleepingcomputer.com
albania arrests bosnia bosnia and herzegovina +17
Microsoft warns of "Dirty Stream" attack impacting Android apps 21 hours ago | www.bleepingcomputer.com
android android apps application apps +17
REvil hacker behind Kaseya ransomware attack gets 13 years in prison 23 hours ago | www.bleepingcomputer.com
attack hacker kaseya kaseya ransomware attack +12
Microsoft won't fix Windows 0x80070643 errors, manual fix required 23 hours ago | www.bleepingcomputer.com
automated environment errors fix +5
Cybersecurity consultant arrested after allegedly extorting IT firm 1 day ago | www.bleepingcomputer.com
arrested confidential consultant cybersecurity +5
HPE Aruba Networking fixes four critical RCE flaws in ArubaOS 1 day, 15 hours ago | www.bleepingcomputer.com
advisory april aruba arubaos +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Offensive Security Engineer

@ Ivanti | United States, Remote
View on infosec-jobs.com

Senior Security Engineer I

@ Samsara | Remote - US
View on infosec-jobs.com

Senior Principal Information System Security Engineer

@ Chameleon Consulting Group | Herndon, VA
View on infosec-jobs.com

Junior Detections Engineer

@ Kandji | San Francisco
View on infosec-jobs.com

Data Security Engineer/ Architect - Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com
View more jobs