告诉HN:Nx攻击的第二波:私人GitHub仓库被公开。
看起来,周三对 Nx 供应链攻击的攻击者现在正在利用泄露的 GitHub 令牌将私有 GitHub 仓库公开(并在此过程中将其重命名为 s1ngularity-repository-XXXXX)。截至目前,受影响的仓库数量为 7,200 个。
<p>https://xcancel.com/adnanthekhan/status/1961152614055207039
查看原文
It appears as though the attackers behind the Nx supply chain attack on Wednesday are now using leaked GitHub tokens to make private GitHub repositories public (and renaming them to s1ngularity-repository-XXXXX in the process). 7.2k repositories affected at time of writing.<p>https://xcancel.com/adnanthekhan/status/1961152614055207039