资讯

Hackers steal 3,325 secrets in GhostAction GitHub supply chain attack

A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, ...
SecurityWeek9 小时

GitHub Workflows Attack Affects Hundreds of Repos, Thousands of Secrets

A supply chain attack involving malicious GitHub Action workflows has impacted hundreds of repositories and thousands of ...
Infosecurity Magazine12 小时

GhostAction Supply Chain Attack Compromises 3000+ Secrets

Hundreds of GitHub users and repositories have been hit by another supply chain attack, in which threat actors have already ...