CircleCI's hack caused by malware stealing engineer's 2FA-backed session

0
16
Hackers breached CircleCi in December after an engineer became infected with information-stealing malware that stole the employee’s 2FA-backed SSO session, allowing access to the company’s internal systems.

Source