GitHub Says Recent Attack Involving Stolen OAuth Tokens Was “Highly Targeted”

In Hacker News by Blog Writer

Post Sharing
Cloud-based code hosting platform GitHub described the recent attack campaign involving the abuse of OAuth access tokens issued to Heroku and Travis-CI as “highly targeted” in nature.
“This pattern of behavior suggests the attacker was only listing organizations in order to identify accounts to selectively target for listing and downloading private repositories,” GitHub’s Mike Hanley said in an