- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
The GhostAction Supply Chain Attack: Compromised GitHub Workflows And Stolen Secrets
GitGuardian has uncovered GhostAction, a massive supply chain attack targeting 327 GitHub users and 817 repositories. Attackers injected malicious workflows that exfiltrated over 3,325 secrets, including npm, PyPI, and DockerHub tokens. Watch as GitGuardian's Senior Cybersecurity Researcher, Guillaume Valadon breaks down how this campaign unfolded, what was stolen, and what developers need to know to stay safe.
Learn more:
The GhostAction Campaign: 3,325 Secrets Stolen Through Compromised GitHub Workflows
https://blog.gitguardian.com/ghostaction-campaign-3-325-secrets-stolen/
When Google Says "Scan for Secrets": A Complete Guide to Finding Hidden Credentials in Salesforce
https://blog.gitguardian.com/a-complete-guide-to-finding-hidden-credentials-in-salesforce/
The Nx "s1ngularity" Attack: Inside the Credential Leak
https://blog.gitguardian.com/the-nx-s1ngularity-attack-inside-the-credential-leak/
Video:
https://youtu.be/t3RSKws0en4
Видео The GhostAction Supply Chain Attack: Compromised GitHub Workflows And Stolen Secrets канала GitGuardian
Learn more:
The GhostAction Campaign: 3,325 Secrets Stolen Through Compromised GitHub Workflows
https://blog.gitguardian.com/ghostaction-campaign-3-325-secrets-stolen/
When Google Says "Scan for Secrets": A Complete Guide to Finding Hidden Credentials in Salesforce
https://blog.gitguardian.com/a-complete-guide-to-finding-hidden-credentials-in-salesforce/
The Nx "s1ngularity" Attack: Inside the Credential Leak
https://blog.gitguardian.com/the-nx-s1ngularity-attack-inside-the-credential-leak/
Video:
https://youtu.be/t3RSKws0en4
Видео The GhostAction Supply Chain Attack: Compromised GitHub Workflows And Stolen Secrets канала GitGuardian
Комментарии отсутствуют
Информация о видео
5 сентября 2025 г. 21:38:26
00:06:36
Другие видео канала
🎯 The Hacker Was Testing Shai-Hulud 2.0 Attack - 3 Days Before It Hit
Tame Secrets Sprawl with Automated Secrets Detection, Remediation and Prevention - CodeSecDays
Add GitGuardian Secrets Detection To Jira Cloud
![[Webinar] Taming Secrets Sprawl with Doppler and GitGuardian](https://i.ytimg.com/vi/Q7UEVAZtXA4/default.jpg)
[Webinar] Taming Secrets Sprawl with Doppler and GitGuardian
GitLab Commit Preview - Measuring success with DevOps Analytics
Have Your Secrets Leaked? It’s time to find out!
Introducing The New GitGuardian Workspace Sidebar Navigation
The GitGuardian Secret Detection Engine Just Got 43X Faster Thanks To Rust
What is EO Critical Software and how do we protect it - Unpacking Executive Order 14028
![[Webinar] Hunting for Secrets in Docker Hub: what we have found and how you can prevent it.](https://i.ytimg.com/vi/PO4LPU3dii8/default.jpg)
[Webinar] Hunting for Secrets in Docker Hub: what we have found and how you can prevent it.
IP Tagging Rules For GitGuardian Honeytoken Events
Meet GitGuardian’s Machine Learning–Powered Risk Scoring
IP Allowlisting for GitGuardian Honeytoken Events!
Introducing The GitGuardian VSCode Extension
Securely Connect ggscout to GitGuardian SaaS with ggbridge
RSA confrence day 1 highlight - Protecting Modern Distributed Applications
Qubit Prague 2022 conference recap and highlights
![[Webinar] Exposing Leaked Secrets Inside Android Apps! Cybernews & GitGuardian](https://i.ytimg.com/vi/4_L4sfe1O8E/default.jpg)
[Webinar] Exposing Leaked Secrets Inside Android Apps! Cybernews & GitGuardian
Understanding GitGuardian Roles and Teams
AI Agents That Actually Fix Your Secrets Problem: GitGuardian + CyberArk MCP Demo
