Credential harvesting from code repository

Tags

CI/CD

MITRE Tactic

Credential Access (TA0006)

Incidents

SIM-Swap to Data Leak on Dark Web

References

https://www.lasso.security/blog/1500-huggingface-api-tokens-were-exposed-leaving-millions-of-meta-llama-bloom-and-pythia-users-for-supply-chain-attacks

Last edited

Jan 18, 2024 1:25 PM

Status

Stub