dcsimg
June 21, 2018
Hot Topics:

GitHub Attacks Prompt Password Reset

  • November 20, 2013
  • By Developer.com Staff

The popular code repository site GitHub is reporting a sudden surge in attempted account hijackings. In response, the website has reset compromised passwords and banned the use of common weak passwords.

"While we aggressively rate-limit login attempts and passwords are stored properly, this incident has involved the use of nearly 40K unique IP addresses," GitHub explained in an advisory. "These addresses were used to slowly brute force weak passwords or passwords used on multiple sites. We are working on additional rate-limiting measures to address this. In addition, you will no longer be able to login to GitHub.com with commonly used weak passwords."

Users with weak passwords or accounts that were targeted by hackers will need to select new passwords the next time they log in. GitHub also recommends that all users enable two-factor authentication.

View article






Comment and Contribute

 


(Maximum characters: 1200). You have characters left.

 

 


Enterprise Development Update

Don't miss an article. Subscribe to our newsletter below.

By submitting your information, you agree that developer.com may send you developer offers via email, phone and text message, as well as email offers about other products and services that developer believes may be of interest to you. developer will process your information in accordance with the Quinstreet Privacy Policy.

Sitemap

×
We have made updates to our Privacy Policy to reflect the implementation of the General Data Protection Regulation.
Thanks for your registration, follow us on our social networks to keep up-to-date