Security News > 2016 > June > GitHub accounts compromised in wake of reused password attack (Help Net Security)
2016-06-17 14:36
Three days ago, an unknown attacker has been spotted trying to break into a large number of GitHub accounts and has managed to access some of them, Shawn Davenport, Vice President of Security at the popular code repository, has shared on Thurdsay. “GitHub has not been hacked or compromised,” he noted. “This appears to be the result of an attacker using lists of email addresses and passwords from other online services that have been compromised … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/mHPUd_4H9_Q/
Related news
- GitVenom attacks abuse hundreds of GitHub repos to steal crypto (source)
- CrowdStrike Security Report: Generative AI Powers Social Engineering Attacks (source)
- Blind Eagle Hacks Colombian Institutions Using NTLM Flaw, RATs and GitHub-Based Attacks (source)
- GitHub Uncovers New ruby-saml Vulnerabilities Allowing Account Takeover Attacks (source)
- Fake "Security Alert" issues on GitHub use OAuth app to hijack accounts (source)
- GitHub project maintainers targeted with fake security alert (source)
- GitHub supply chain attack spills secrets from 23,000 projects (source)
- Supply chain attack on popular GitHub Action exposes CI/CD secrets (source)
- Google acquisition target Wiz links fresh supply chain attack to 23K pwned GitHub repos (source)
- GitHub Action hack likely led to another in cascading supply chain attack (source)