Supply Chain Attack on GitHub Hits Coinbase, Exposing 218 Repositories

24 Mar 2025

News

A supply chain attack on GitHub has affected Coinbase, leading to the disclosure of keys from 218 repositories and malicious alterations to CI/CD processes. This attack exposed sensitive information and compromised the integrity of development workflows, thereby increasing threats to the company. Technical details include the compromise of CI/CD keys, which allowed attackers to manipulate deployment pipelines.

Read the original article on freebuf.com