Back to directory
WRITEUP #187

GitHub Actions Exploitation: Repo Jacking And Environment Manipulation

AI / LLMRepojackingSupply chain attack
by@hugow_vincent(Hugo Vincent)
Program
Microsoft (Azure)SwaggerGoogle (Firebase)Alibaba
Published
Jul 10, 2024
Added to HackDex
Jul 15, 2024
Read Full Writeuphttps://www.synacktiv.com/en/publications/github-actions-exploitation-repo-jacking-and-environment-manipulation.html
RELATED WRITEUPS
Revival Hijack – PyPI hijack technique exploited in the wild, puts 22K packages at risk
AI / LLMCI/CD
Unmasking Harmful Content in a Medical Chatbot: A Red Team Perspective
AI / LLMAI
Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information
AI / LLMAI
Google AI Studio: LLM-Powered Data Exfiltration Hits Again! Quickly Fixed.
AI / LLMAI
From MLOps to MLOops: Exposing the Attack Surface of Machine Learning Platforms
AI / LLMAI

Built with ❤️ by Shubham Rawat