THREATOPS
THREAT OPSThreat News › Coordinated GitHub API enumeration and access token abuse

Coordinated GitHub API enumeration and access token abuse

lowdatadog_seclabsPublished 2026-07-08

Datadog Security Research has tracked multiple coordinated campaigns enumerating GitHub organizations, repositories, and users through the public GitHub API, abusing leaked access tokens, and cloning private repositories.

Original source: https://securitylabs.datadoghq.com/articles/coordinated-github-api-enumeration/