Metacurity

Share this post
Hackers Stole CircleCi Databases Using an Engineer's Stolen Privileges
metacurity.substack.com

Hackers Stole CircleCi Databases Using an Engineer's Stolen Privileges

Thousands of Norton LifeLock customers compromised, 24 Hours of Le Mans Virtual interrupted by security threat, $2.5 million recovered from Harmony breach, NFT God's wallet drained, much more

Cynthia Brumfield
Jan 17
1
Share this post
Hackers Stole CircleCi Databases Using an Engineer's Stolen Privileges
metacurity.substack.com

Check out my latest CSO column, which focuses on port crane cybersecurity and the upcoming study of the issue mandated by the NDAA bill passed in December.

Hackers breached the continuous integration and continuous delivery platform CircleCi in December after an engineer became infected with information-stealing malware that stole a valid, 2FA-backed SSO session cookie, allowing access to the company's internal systems.

After it disclosed a security incident earlier this month, CircleCi says in a new incident report on the attack they first learned of the unauthorized access to their systems after a customer reported that their GitHub OAuth token had been compromised. This compromise led to CircleCi automatically rotating the GitHub OAuth tokens for its customers.

Metacurity is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

Using the engineer's privileges, CircleCi says the hacker began stealing data on December 22nd …

Keep reading with a 7-day free trial

Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.

Already a paid subscriber? Sign in
Previous
Next
© 2023 DCT Associates
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great writing