Slack loses code repositories to unauthorized user
An unauthorized user gained access to Slack's GitHub repositories. The user managed to download the repositories before Slack plugged the leak.
The damage appears limited, as none of the stolen repositories involve Slack's source code or user data. The organization stresses that source code and... Read more
Ruby 3.2.0 includes a host of new features
The new release features WebAssembly support, production-ready YJIT optimization and more.
Ruby 3.2.0 was recently made available. The release includes major features like WASI-based WebAssembly support.
As maintainer Yui Naruse explained in his release announcement, it's "an initial port of... Read more
Okta’s source code has been stolen
An internal memo indicates that Okta's source code has been stolen by one or more unauthorized users. The organization claims the breach does not affect customers.
BleepingComputer obtained the internal memo from an anonymous source. Okta CSO David Bradbury writes that one or more unauthorized ... Read more
GitHub introduces free secret scanning for all repositories
The new service allows developers to find exposed secrets and credentials.
In a move to secure the global software supply chain, GitHub plans to allow developers to scan their repositories for exposed secrets and credentials for free. The new service was announced in a Tweet this week.
Mariam... Read more
GitHub will require two-factor authentication from all users in 2023
The new policy applies to anyone who contributes code to the platform.
GitHub announced this week that it will require all users to enable two-factor authorization (2FA) by the end of 2023. To be clear, the policy will apply not just to developers who contribute code to the GitHub website, but t... Read more
GitHub launches business version of Github Copilot
GitHub recently announced a business version of its Copilot AI tool, providing better support for large teams. In addition, the Microsoft subsidiary released a series of portfolio-wide updates.
GitHub Copilot, which was recently accused of software piracy, is getting a business version. Until no... Read more
Developers sue GitHub Copilot for software piracy
GitHub's Copilot has been sued for widespread software piracy in a major lawsuit. The AI tool allegedly violates the licensing rights of developers who publish their software on GitHub under open-source licenses.
According to the law firm representing the software developers, Copilot abuses the ... Read more
Cybercriminals steal 130 GitHub repositories through Dropbox account
Storage provider Dropbox disclosed that cybercriminals stole 130 GitHub repositories through an employee's account. In addition to code, the personal email addresses of employees and customers were captured.
The cybercriminals gained access to the employee's account through a phishing attack, Dr... Read more
Toyota warns that the data of 300,000 customers may have been stolen
An access key code left exposed on GitHub may have breached the data of 300,000 Toyota customers.
Toyota has announced that nearly 300,000 customers may have had their data stolen, according to a report in SiliconANGLE. The incident marks the third data breach related to the company so far this... Read more
GitHub warns of phishing campaign with ‘many victims’
Several GitHub users were hit by a phishing campaign over the past few days. “While GitHub itself was not affected, the campaign has impacted many victims", the organization warned.
The attackers send emails in the style of CircleCI, a popular DevOps platform. The cybercriminals claim that the... Read more