pull down to refresh

GitHub suffers a cascading supply chain attack compromising CI/CD secretswww.infoworld.com/article/3849245/github-suffers-a-cascading-supply-chain-attack-compromising-ci-cd-secrets.html
289 sats \ 2 comments \ @ch0k1 21 Mar security
CISA confirms cascading attack from reviewdog to tj-actions exposed sensitive credentials across 23,000+ repositories.
A sophisticated cascading supply chain attack has compromised multiple GitHub Actions, exposing critical CI/CD secrets across tens of thousands of repositories. The attack, which originally targeted the widely used “tj-actions/changed-files” utility, is now believed to have originated from an earlier breach of the “reviewdog/action-setup@v1” GitHub Action, according to a report.
write
preview
related posts
137 sats \ 0 replies \ @ek 21 Mar
The attack methodology involved a particularly sophisticated approach. Attackers inserted a base64-encoded payload into an install script
I don’t think obfuscating malicious code by encoding it as base64 is "particularly sophisticated". They mentioned that in my graduate program.
reply
19 sats \ 0 replies \ @SimpleStacker 21 Mar
reply