告诉 HN:第二波 Nx 攻击:私有 GitHub 仓库正在被公开
4 分•作者: labordayruined•9 个月前
看起来,周三Nx供应链攻击的幕后黑手目前正在使用泄露的GitHub令牌,将私有GitHub存储库公开(并将其重命名为s1ngularity-repository-XXXXX)。撰写本文时,已有7200个存储库受到影响。
https://xcancel.com/adnanthekhan/status/1961152614055207039
查看原文
It appears as though the attackers behind the Nx supply chain attack on Wednesday are now using leaked GitHub tokens to make private GitHub repositories public (and renaming them to s1ngularity-repository-XXXXX in the process). 7.2k repositories affected at time of writing.<p>https://xcancel.com/adnanthekhan/status/1961152614055207039