Big Data

A leaked GitHub access token could have led to a catastrophic supply chain attack



A leaked GitHub access token with administrator access to the centralized PyPI repository and the Python Software Foundation’s GitHub repository could have had disastrous consequences if not rapidly revoked.

Researchers at JFrog revealed the leaked token could have been used in a variety of different supply chain attacks, adding that the potential damage a cyber criminal could have inflicted would have been severe.





READ SOURCE

This website uses cookies. By continuing to use this site, you accept our use of cookies.