Close Menu
TechBrunchTechBrunch
  • Home
  • AI
  • Apps
  • Crypto
  • Security
  • Startups
  • TechCrunch
  • Venture

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

What's Hot

Jack Altman raised $275 million in new early stage funds just a week

September 16, 2025

Coderabbit raised $60 million and values ​​the launch of an AI code review two years ago at $550 million

September 16, 2025

Waymo's co-CEO on the truth behind self-driving cars in 2025

September 16, 2025
Facebook X (Twitter) Instagram
TechBrunchTechBrunch
  • Home
  • AI

    OpenAI seeks to extend human lifespans with the help of longevity startups

    January 17, 2025

    Farewell to the $200 million woolly mammoth and TikTok

    January 17, 2025

    Nord Security founder launches Nexos.ai to help enterprises move AI projects from pilot to production

    January 17, 2025

    Data proves it remains difficult for startups to raise capital, even though VCs invested $75 billion in the fourth quarter

    January 16, 2025

    Apple suspends AI notification summaries for news after generating false alerts

    January 16, 2025
  • Apps

    Google brings Pixel 6 and new devices to Material3 Expressive, along with other features, to the Pixel 6 and new devices

    September 3, 2025

    Google's NoteBookLM now allows you to customize the tone of your AI podcasts

    September 3, 2025

    Roblox expands the use of age estimation techniques and introduces standardized assessments

    September 3, 2025

    Instagram finally launches the iPad app

    September 3, 2025

    Complete the 2025 Confusion Builder Stage Agenda with the Maximum Scaling Voice

    September 3, 2025
  • Crypto

    PayPal will add a new one-to-one payment link to support Crypto soon

    September 15, 2025

    10 additional exhibition tables open and open in 2025

    September 15, 2025

    Stripe will showcase who WHO including Humanity, Openai and Paradigm to build a new blockchain

    September 4, 2025

    Coinbase CEO explains why he fired an engineer who didn't try AI right away

    August 22, 2025

    Your next customer is destroying the 2025 Expo floor

    August 19, 2025
  • Security

    Samsung Patch Zero Day Security Flaws are used to hack into customer's mobile phones

    September 16, 2025

    Gucci, Balenciaga and other brands own companies checking hacks

    September 15, 2025

    Israel announces $1.5 million seizure from crypto wallet linked to Iran

    September 15, 2025

    This is Tech Powering that drives the crackdown on Ice's deportation.

    September 13, 2025

    Apple's latest iPhone security features have made life even more difficult for spyware makers

    September 11, 2025
  • Startups

    7 days left: Founders and VCs save over $300 on all stage passes

    March 24, 2025

    AI chip startup Furiosaai reportedly rejecting $800 million acquisition offer from Meta

    March 24, 2025

    20 Hottest Open Source Startups of 2024

    March 22, 2025

    Andrill may build a weapons factory in the UK

    March 21, 2025

    Startup Weekly: Wiz bets paid off at M&A Rich Week

    March 21, 2025
  • TechCrunch

    OpenSea takes a long-term view with a focus on UX despite NFT sales remaining low

    February 8, 2024

    AI will save software companies' growth dreams

    February 8, 2024

    B2B and B2C are not about who buys, but how you sell

    February 5, 2024

    It's time for venture capital to break away from fast fashion

    February 3, 2024

    a16z's Chris Dixon believes it's time to focus on blockchain use cases rather than speculation

    February 2, 2024
  • Venture

    Jack Altman raised $275 million in new early stage funds just a week

    September 16, 2025

    Coderabbit raised $60 million and values ​​the launch of an AI code review two years ago at $550 million

    September 16, 2025

    Waymo's co-CEO on the truth behind self-driving cars in 2025

    September 16, 2025

    D-ID gets Simpleshow, a Berlin-based video startup

    September 16, 2025

    Robinhood plans to launch a startup fund that is open to all retail investors

    September 15, 2025
TechBrunchTechBrunch

Mintlify announces customer GitHub tokens exposed in data breach

TechBrunchBy TechBrunchMarch 18, 20242 Mins Read
Facebook Twitter Pinterest Telegram LinkedIn Tumblr WhatsApp Email
Share
Facebook Twitter LinkedIn Pinterest Telegram Email


Documentation startup Mintlify said dozens of its customers had their GitHub tokens exposed in a data breach earlier in the month that went public last week.

Mintlify helps developers document their software and source code by requesting access to and directly leveraging customers' GitHub source code repositories. Mintlify counts fintech, database, and AI startups among its customers.

In a blog post on Monday, Mintlify blamed the March 1 incident on a vulnerability in its systems, but said 91 of its customers had their GitHub tokens compromised as a result.

These private tokens allow GitHub users to share their account access with third-party apps, including companies like Mintlify. If these tokens were stolen, an attacker could gain the same level of access to a person's source code as the tokens allow.

“Users have been notified and we are working with GitHub to determine if the token was used to access private repositories,” Mintlify co-founder Han Wang said in a blog post. .

News of the incident became public last week after some users on Reddit and Hacker News commented on it after receiving an email about the incident from Mintlify on Friday. This comes days after the company first told customers in a blog post that “no further action is required.”

In a post discussing the breach on Hacker News, Wang said a vulnerability in the system exposed the company's administrator credentials to customers. Wang said these credentials could be used to access internal endpoints and access unspecified other sensitive user information.

Wang said the company is in the process of eliminating the use of private tokens “to prevent incidents like this from happening again.”

Although the blog post identifies the person who discovered the vulnerability as a bug bounty reporter, Wang, the company's co-founder, said the incident was malicious.

“The target of this attack was our users' GitHub tokens,” Wang told TechCrunch via email.

“An investigation with one of our affected customers revealed that the leaked tokens were likely not used by the attackers. We are currently working with GitHub and our customers to provide other tokens are being used by attackers,” Wang said.



Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Samsung Patch Zero Day Security Flaws are used to hack into customer's mobile phones

September 16, 2025

Gucci, Balenciaga and other brands own companies checking hacks

September 15, 2025

Israel announces $1.5 million seizure from crypto wallet linked to Iran

September 15, 2025

This is Tech Powering that drives the crackdown on Ice's deportation.

September 13, 2025

Apple's latest iPhone security features have made life even more difficult for spyware makers

September 11, 2025

France says Apple has notified victims of a new spyware attack

September 11, 2025

Leave A Reply Cancel Reply

Top Reviews
Editors Picks

7 days left: Founders and VCs save over $300 on all stage passes

March 24, 2025

AI chip startup Furiosaai reportedly rejecting $800 million acquisition offer from Meta

March 24, 2025

20 Hottest Open Source Startups of 2024

March 22, 2025

Andrill may build a weapons factory in the UK

March 21, 2025
About Us
About Us

Welcome to Tech Brunch, your go-to destination for cutting-edge insights, news, and analysis in the fields of Artificial Intelligence (AI), Cryptocurrency, Technology, and Startups. At Tech Brunch, we are passionate about exploring the latest trends, innovations, and developments shaping the future of these dynamic industries.

Our Picks

Jack Altman raised $275 million in new early stage funds just a week

September 16, 2025

Coderabbit raised $60 million and values ​​the launch of an AI code review two years ago at $550 million

September 16, 2025

Waymo's co-CEO on the truth behind self-driving cars in 2025

September 16, 2025

Subscribe to Updates

Subscribe to our newsletter and never miss our latest news

Subscribe my Newsletter for New Posts & tips Let's stay updated!

© 2025 TechBrunch. Designed by TechBrunch.
  • Home
  • About Tech Brunch
  • Advertise with Tech Brunch
  • Contact us
  • DMCA Notice
  • Privacy Policy
  • Terms of Use

Type above and press Enter to search. Press Esc to cancel.