Bleeping Computer

Hackers stealing GitHub accounts using fake CircleCI notifications

GitHub is warning of an ongoing phishing campaign that started on September 16 and is targeting its users with emails that impersonate the CircleCI continuous integration and delivery platform. The ...
Bleeping Computer

GitHub fixes bug causing users to log into other accounts

Last night, GitHub automatically logged out many users by invalidating their GitHub.com sessions to protect user accounts against a potentially serious security vulnerability. Earlier this month ...
TechRepublic

GitHub rolling out two-factor authentication to millions of users

GitHub rolling out two-factor authentication to millions of users Your email has been sent GitHub, used by the majority of major tech companies, has announced that it is rolling out 2FA. Acknowledging ...
The Next Web

GitHub is making 2FA mandatory for devs — here’s how to enable it

GitHub is increasing the security of repositories by requiring all developers to enable two-factor authentication by the end of 2023. The company’s directive is ...
SiliconANGLE

Sophisticated software supply chain attack hits Top.gg, compromises GitHub accounts

Researchers at application security testing firm Checkmarx Ltd. today detailed a recently discovered software supply chain attack that targeted Top.gg, a popular search and discovery platform for ...