Threat actors that compromised two OAuth integrators could potentially penetrate cloud systems

SC Media reported on threat actors who compromised OAuth integrators and gained potential access to cloud systems through stolen tokens from Heroku and Travis-CI. Casey Ellis provided analysis on how the compromised credentials could be leveraged to breach private code repositories and emphasized the cascading risks across integrated development environments.