Dormant GitHub ‘Ghost’ Accounts Used in Corporate Reconnaissance Campaigns
Datadog Security Labs warns attackers are abusing years-old GitHub accounts and compromised OAuth tokens to map corporate organizations via the GitHub API.
Read the full articleYou might also wanna read
Dormant GitHub Accounts Help Attackers Blend In While Mapping Corporate Orgs
Datadog Security Labs is warning of “several overlapping campaigns” that are systematically enumerating corporate GitHub organizations, repo
Dormant GitHub Accounts Help Attackers Blend In While Mapping Corporate Orgs
Datadog Security Labs is warning of "several overlapping campaigns" that are systematically enumerating corporate GitHub organizations, repo
Dormant GitHub Accounts Help Attackers Blend In While Mapping Corporate Orgs
Datadog Security Labs is warning of “several overlapping campaigns” that are systematically enumerating corporate GitHub organizations, repo

Datadog Warns of Coordinated GitHub API Enumeration Campaigns Targeting Organizations
Datadog Security Research has uncovered multiple coordinated campaigns abusing the GitHub API to systematically map organizations, repositor

Dormant GitHub Accounts Exploited for Source Code Recon
Discover how dormant GitHub accounts are used for corporate reconnaissance. Learn about tactics and security measures. Read more.
Coordinated GitHub API enumeration and access token abuse
Datadog Security Research has tracked multiple coordinated campaigns enumerating GitHub organizations, repositories, and users through the p

Comments
Sign in to join the conversation.
No comments yet. Be the first.