ISC StormCast for Monday, April 18th, 2022
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
00:00
Get Up
Get up itself noticed how one of its private repositories was accessed, and then an aw key that was stored inside that private repostory was later abused. And that apparently happened to other users of heroku and travis as well. It does not appear to be a buck rvon buildi on the gitup end, but more ly on herocus or travis s i - over all, there isn't sort of really a good root cause for this problem.
Play episode from 02:20
Transcript
