Security Feed
  1. Archives

May 05 2022 Heroku admits that customer credentials were stolen in cyberattack

Source

Heroku has now revealed that the stolen GitHub integration OAuth tokens from last month further led to the compromise of an internal customer database. The Salesforce-owned cloud platform acknowledged the same compromised token was used by attackers to exfiltrate customers' hashed and salted passwords from "a database." [...]

Posted by Ax Sharma on Thu 05 May 2022 in BleepingComputer.

Tags: Security.

Categories

  1. 12
  2. Ars Technica
  3. AWS Security
  4. BleepingComputer
  5. Brian Krebs
  6. Bruce Schneier
  7. GCP Security
  8. Google Project Zero
  9. Mozilla Security
  10. The Daily Swig
  11. The Guardian
  12. The Register
  13. Threatpost

Tag cloud

  • Security
  • Uncategorized
  • Web Security
  • malware
  • vulnerabilities
  • Security, Identity, & Compliance
  • Microsoft
  • Security Blog
  • Biz & IT
  • privacy
  • hacks
  • Identity & Security
  • Google
  • Government
  • Foundational (100)
  • Announcements
  • Security & Identity
  • Cloud security
  • CryptoCurrency
  • hacking
  • Data and computer security
  • Technology
  • Intermediate (200)
  • A Little Sunshine
  • Technical How-to

Security Feed. Powered by Pelican and m.css. Code is available on GitLab.