AttackFeed by Joe Wagner | One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens  - The Hacker News

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens  – The Hacker News

Posted on By [email protected] (The Hacker News) No Comments on One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens  – The Hacker News
Attack Feeds

Cybersecurity researchers have disclosed a one-click attack via Microsoft Visual Studio Code (VS Code) that makes it possible to steal a user’s GitHub token.

“Just by clicking a link, it’s possible for an attacker to steal a GitHub token that can read and write to your repos, including private ones,” security researcher Ammar Askar said.

GitHub supports a feature called GitHub.dev that runs as  –

Read More  – The Hacker News 

You may also like

AttackFeed by Joe Wagner | MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks  - The Hacker News
Attack Feeds
MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks  – The Hacker News
May 5, 2026
AttackFeed by Joe Wagner | Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures  - The Hacker News
Attack Feeds
Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures  – The Hacker News
April 1, 2026
AttackFeed by Joe Wagner | Private Chats, Photos of Celebs Exposed in Suspected Stalkerware Leak  - Hackread – Cybersecurity News, Data Breaches, AI and More
Attack Feeds
Private Chats, Photos of Celebs Exposed in Suspected Stalkerware Leak  – Hackread – Cybersecurity News, Data Breaches, AI and More
April 30, 2026
AttackFeed by Joe Wagner | Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account  - The Hacker News
Attack Feeds
Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account  – The Hacker News
March 31, 2026

Leave a Reply