Security News > 2023 > January > Slack's private GitHub code repositories stolen over holidays
Slack suffered a security incident over the holidays affecting some of its private GitHub code repositories.
BleepingComputer has come across a security incident notice issued by Slack on December 31st, 2022.
The incident involves threat actors gaining access to Slack's externally hosted GitHub repositories via a "Limited" number of Slack employee tokens that were stolen.
While some of Slack's private code repositories were breached, Slack's primary codebase and customer data remain unaffected, according to the company.
Slack has since invalidated the stolen tokens and says it is investigating "Potential impact" to customers.
Ironically, the security update speaks of Slack taking your "Security, privacy, and transparency very seriously," and yet comes with some caveats.