GitHub Hit by Hacker : Asking ransom from Developers in order to Restore their Source Codes


By MYBRANDBOOK


GitHub Hit by Hacker : Asking ransom from Developers in order to Restore their Source Codes

Hackers have hit open source software development platform Microsoft-owned GitHub, removing code repositories and asking ransom from developers in order to restore their source codes.

 

According to a report online on Friday, hundreds of developers have had their source code repositories wiped and replaced with a ransom demand on Microsoft-owned GitHub.

 

"What is known is that the hacker removes all source code and recent commits from victims' Git repositories, and leaves a ransom note behind that asks for a payment in Bitcoins," the report added.

 

The hackers claim all source code has been downloaded and stored on one of their servers.

 

"To recover your lost code and avoid leaking it: Send us 0.1 Bitcoin (BTC) to our Bitcoin address 1ES14c7qLb5CYhLMUekctxLgc1FV2Ti9DA and contact us by email at admin@gitsbackup.com with your Git login and a proof of payment," read the ransom 

message.

 

"If you are unsure if we have your data, contact us and we will send you a proof. Your code is downloaded and backed up on our servers.

 

"If we don't receive your payment in the next 10 days, we will make your code public or use them otherwise," the hackers' message read.

 

A GitHub search revealed that at least 392 GitHub repositories have been compromised.

 

Kathy Wang, Director of Security for GitLab, was quoted as saying that they immediately began investigation into the issue.

 

"We have identified affected user accounts and all of those users have been notified. As a result of our investigation, we have strong evidence that the compromised accounts have account passwords being stored in plaintext on a deployment of a related repository," Wang told on the report.

 

"We are still investigating the issue but we found evidence the 'update' scripts in some of the affected repositories hardcoded credentials in an insecure location in the deployed application," she added in an email, which notes that GitLab users can also restore their code repos. More instructions are available here.

 

Jeremy Galloway, a security researcher at Atlassian, which owns BitBucket, told Motherboard that the company has seen a lot of users' repositories getting hit by these hackers.

 E-Magazine 
 VIDEOS  Placeholder image

Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org