GitHub Hit by Hacker : Asking ransom from Developers in order to Restore their Source Codes
By MYBRANDBOOK
Hackers have hit open source software development platform Microsoft-owned GitHub, removing code repositories and asking ransom from developers in order to restore their source codes.
According to a report online on Friday, hundreds of developers have had their source code repositories wiped and replaced with a ransom demand on Microsoft-owned GitHub.
"What is known is that the hacker removes all source code and recent commits from victims' Git repositories, and leaves a ransom note behind that asks for a payment in Bitcoins," the report added.
The hackers claim all source code has been downloaded and stored on one of their servers.
"To recover your lost code and avoid leaking it: Send us 0.1 Bitcoin (BTC) to our Bitcoin address 1ES14c7qLb5CYhLMUekctxLgc1FV2Ti9DA and contact us by email at admin@gitsbackup.com with your Git login and a proof of payment," read the ransom
message.
"If you are unsure if we have your data, contact us and we will send you a proof. Your code is downloaded and backed up on our servers.
"If we don't receive your payment in the next 10 days, we will make your code public or use them otherwise," the hackers' message read.
A GitHub search revealed that at least 392 GitHub repositories have been compromised.
Kathy Wang, Director of Security for GitLab, was quoted as saying that they immediately began investigation into the issue.
"We have identified affected user accounts and all of those users have been notified. As a result of our investigation, we have strong evidence that the compromised accounts have account passwords being stored in plaintext on a deployment of a related repository," Wang told on the report.
"We are still investigating the issue but we found evidence the 'update' scripts in some of the affected repositories hardcoded credentials in an insecure location in the deployed application," she added in an email, which notes that GitLab users can also restore their code repos. More instructions are available here.
Jeremy Galloway, a security researcher at Atlassian, which owns BitBucket, told Motherboard that the company has seen a lot of users' repositories getting hit by these hackers.
Singapore to remove One-Time Passwords from Bank Accounts
According to the Monetary Authority of Singapore, clients who utilise secur...
Is 375 million Airtel subscribers database breached?
When a hacker claims to have accessed and put up for sale a customer databa...
The government of India intends to construct a single portal f
A single portal will be launched by the Indian government to list all of it...
OpenAI offers GPT-4o, a faster model available to all users at
GPT-4o, a faster and more sophisticated AI model, is made available to all...
Icons Of India : Dr. Arvind Gupta
Arvind Gupta is the Head and Co-Founder of the Digital India Foundatio...
Icons Of India : Anil Agarwal
Anil Agarwal, the Founder and Chairman of Vedanta Resources Ltd., is r...
ICONS OF INDIA : ROSHNI NADAR MALHOTRA
Roshni Nadar Malhotra is the Chairperson of HCLTech, a leading global ...
PFC - Power Finance Corporation Ltd
PFC is a leading financial institution in India specializing in power ...
LIC - Life Insurance Corporation of India
LIC is the largest state-owned life insurance company in India...
IOCL - Indian Oil Corporation Ltd.
IOCL is India’s largest oil refining and marketing company ...
Indian Tech Talent Excelling The Tech World - Aman Bhutani, CEO, GoDaddy
Aman Bhutani, the self-taught techie and CEO of GoDaddy, oversees a co...
Indian Tech Talent Excelling The Tech World - Steve Sanghi, Executive Chair, Microchip
Steve Sanghi, the Executive Chair of Microchip Technology, has been a ...
Indian Tech Talent Excelling The Tech World - Sundar Pichai, CEO- Alphabet Inc.
Sundar Pichai, the CEO of Google and its parent company Alphabet Inc.,...