GitHub Internal Repository Leak via VS Code Extension
AI 功能
- 曝光
- 211K
- 点赞
- 112
- 转发
- 20
- 评论
- 0
- 收藏
- 149
TL;DR
A supply chain attack on the Nx Console extension enabled attackers to steal credentials from a GitHub employee, leading to the theft of 4,000 private repositories. The incident exposes the risks of automated extension updates.
正在看 简体中文 译文
