all InfoSec news
Slack GitHub Account Hacked via Stolen Employee API Token
Security Boulevard securityboulevard.com
On December 29, 2022, Slack was alerted to suspicious activity on their GitHub account. Upon investigation, the company discovered that a limited number of employee tokens had been stolen and misused to gain access to an externally hosted repository. The threat actor had also downloaded private code repositories on December 27, but neither Slack’s primary [...]
The post Slack GitHub Account Hacked via Stolen Employee API Token appeared first on Wallarm.
The post Slack GitHub Account Hacked via Stolen …
access account actor api api leak api security cloud security code code repositories data breach december devops different attack types employee github hacked incident investigation private repositories repository researcher corner security-incidents slack stolen the company threat threat actor token token leak tokens wallarm web application security