Bleeping Computer

GitHub rotates keys to mitigate impact of credential-exposing flaw

GitHub rotated keys potentially exposed by a vulnerability patched in December that could let attackers access credentials within production containers via environment variables. This unsafe ...
Threat Post

Breached Credentials Used to Access Github Repositories

Password reuse strikes GitHub users, some of whom will have to reset their credentials after unauthorized attempts were made to access a large number of GitHub accounts. Github is forcing a password ...
Infosecurity-magazine.com

GitHub Rotates Credentials and Patches New Bug

GitHub has revealed that service disruption in December was due to it rotating credentials after the discovery of a high-severity bug, and warned that some customers may need to take additional action ...

AI Giants Accidentally Leaking Secrets on GitHub

Research by Wiz shows that industry titans, with combined valuations exceeding $400 billion, have left the equivalent of ...
Cryptopolitan on MSN

Malicious VS Code extensions resurface, stealing GitHub credentials and crypto wallets

Developers will have to contend with a dormant turned active malicious code on Visual Studio Code (VS Code) extensions, which ...
Hosted on MSN

Hackers target South American crypto users on GitHub with credential stealing Trojan

Hackers are now stealing crypto credentials on GitHub with a banking Trojan called Astaroth. The development was revealed after research by cybersecurity firm McAfee. The outfit claimed that the ...
Computing

Security issues identified on GitHub

Two separate research studies have found companies are leaking information on GitHub, and the site itself is being targeted.
Dark Reading

'Elektra-Leak' Attackers Harvest AWS Cloud Keys in GitHub Campaign

Attackers are actively harvesting exposed Amazon Web Services (AWS) identity and access management (IAM) credentials in public GitHub repositories to create AWS Elastic Compute (EC2) instances for ...