ZDNet

GitHub sued for aiding hacking in Capital One breach

Capital One and GitHub have been sued this week as part of a class-action lawsuit filed in California on allegations of failing to secure or prevent a security breach during which the personal details ...

GitHub is finally tightening up security around npm following multiple attacks

Furthermore, GitHub announced it would deprecate legacy classic tokens, as well as time-based one-time password (TOTP) 2FA, ...

Salesloft says Drift customer data thefts linked to March GitHub account hack

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...
Newsweek

GitHub ‘Actively Encourages’ Hacking, Suit Filed Against Company After Capital One Hack Says

Lawfirm Tycko & Zavareei LLP has filed a class-action lawsuit against source-code hosting site GitHub for its link to a massive Capital One hack, alleging the company is guilty of negligence, ...
SecurityWeek

Details Emerge on Chinese Hacking Operation Impersonating US Lawmaker

A Chinese group has been targeting entities involved in US-China relations, economic policy, and international trade in a ...
Network World

The aftermath of the Gentoo GitHub hack

Gentoo GitHub hack: What happened? Late last month (June 28), the Gentoo GitHub repository was attacked after someone gained control of an admin account. All access to the repositories was soon ...
Threat Post

Five OAuth Bugs Lead to Github Hack

A Russian researcher was able to take five low severity OAuth bugs and string them together to create what he calls a “simple but high severity exploit” in Github. A Russian security researcher was ...
Ars Technica

Hacker commandeers GitHub to prove Rails vulnerability

A Russian hacker dramatically demonstrated one of the most common security weaknesses in the Ruby on Rails web application language. By doing so, he took full control of the databases GitHub uses to ...