Security Alerts & News
by Tymoteusz A. Góral

History
#968 Breached credentials used to access Github repositories
Github is forcing a password reset on some of its users after it detected a number of successful intrusions into its repositories using credentials compromised in other breaches.

“This appears to be the result of an attacker using lists of email addresses and passwords from other online services that have been compromised in the past, and trying them on GitHub accounts,” GitHub said in an advisory published Thursday by Shawn Davenport, GitHub VP of security. “We immediately began investigating, and found that the attacker had been able to log in to a number of GitHub accounts."

GitHub said it detected late Tuesday unauthorized attempts against a large number of GitHub accounts. It stressed that GitHub itself has not been compromised.
Read more
#970 Locky, Dridex and Angler among cybercrime groups to experience fall in activity
#969 Non-US encryption is 'theoretical,' claims CIA chief in backdoor debate
#968 Breached credentials used to access Github repositories
#967 Adobe update plugs Flash Player zero-day
#966 Mozilla tests Firefox Containers: you can isolate shopping, work, personal browsing identities
#965 QuintessenceLabs getting truly random with quantum security
#964 GitHub attacker launched massive login campaign using stolen passwords
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12