NewsWhat Went Wrong in the Gentoo Linux Hack

What Went Wrong in the Gentoo Linux Hack content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.

The developers behind the Gentoo distribution of Linux have revealed more details about how their GitHub repository got hacked last week. According to the team, “The attacker gained access to a password of an organization administrator. Evidence collected suggests a password scheme where disclosure on one site made it easy to guess passwords for unrelated webpages.”

Luckily, the attacker took actions that were immediately noticed. “Given the credential taken, its likely a quieter attack would have provided a longer opportunity window,” the developers said.

To prevent future attacks of this nature, the team is adopting two-factor authentication and implementing a policy that requires developers to use a password manager.

View article

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends & analysis

Latest Posts

Related Stories