The German automotive giant Mercedes-Benz found itself on the wrong end of a software supply chain incident after RedHunt Labs found a leaked GitHub token belonging to an employee of the carmaker that granted "'unrestricted’ and 'unmonitored'" access to the entirety of source code hosted on Mercedes’ internal GitHub Enterprise Server. 

The post Lessons from the Mercedes-Benz GitHub source code leak appeared first on Security Boulevard.

Paul Roberts

Source: Security Boulevard
Source Link: https://securityboulevard.com/2024/02/lessons-from-the-mercedes-benz-github-source-code-leak/