Security News

Git your patches here! GitHub offers to brew automatic pull requests loaded with vuln fixes
2019-05-30 07:12

Your repo's dependencies need updating to close a hole? We're way ahead of you, pal GitHub can now automagically offer security patches for projects' third-party dependencies.…

Hundreds of Git Repositories Held for Ransom
2019-05-06 08:20

Cybercriminals have been wiping GitHub, GitLab and Bitbucket repositories and asking their owners to pay a ransom to recover the data. The impacted Git service providers believe the attackers have...

Mystery Git ransomware appears to blank commits, demands Bitcoin to rescue code
2019-05-03 19:00

Sudden flurry of forum posts leaves a few clues Programmers say they've been hit by ransomware that seemingly wipes their Git repositories' commits and replaces them with a ransom note demanding Bitcoin.…

Gits exposed, kinky app devs spanked, Feds spy on spyware buyers, etc
2018-09-08 09:46

Mac APT unearthed and other infosec bits and bytes summarized just for you Roundup This week brought with it a Supermicro shoring up firmware security, a North Korean hacking charge, and a spying...

Open .Git Directories Leave 390K Websites Vulnerable
2018-09-07 19:01

An exhaustive scan shows hundreds of thousands of websites potentially exposing sensitive data such as database passwords, API keys and so on.

Et tu, Gentoo? Horrible gits meddle with Linux distro's GitHub code
2018-06-28 23:58

If you downloaded anything from project's hub repos, consider it compromised If you have fetched anything from Gentoo's GitHub-hosted repositories today, dump those files – because hackers have...

Git users: Update now to avoid massive remote code execution flaw
2018-05-31 16:09

A newly reported exploit in Git allows attackers to run code on affected machines by using compromised repository files.

Bug In Git Opens Developer Systems Up to Attack
2018-05-30 20:12

A serious vulnerability was patched by developers behind Git that closes the door on a flaw that could lead to arbitrary code execution on a developer's system.

Git vulnerability could lead to an attack of the (repo) clones
2018-05-30 15:39

Best git patching y'all A new version of Git has been emitted to ward off potential arbitrary code execution as a result of merely cloning a malicious repository.…

Remote Code Execution Vulnerability Patched in Git
2018-05-30 12:40

Updates released on Tuesday for the Git version control system patch two security flaws, including a serious vulnerability that can be exploited for remote code execution using specially crafted...