From PC Mag: A hacker has been breaking into GitHub accounts, purportedly wiping the code repositories and then demanding a ransom in exchange to restore the information.
The attack, which was initially noticed by ZDNet, has hit at least 392 different GitHub repos and defaced them with a ransom note. "To recover your lost code and avoid leaking it: Send us 0.1 Bitcoin (BTC) to our Bitcoin address 1ES14c7qLb5CYhLMUekctxLgc1FV2Ti9DA and contact us by Email at admin@gitsbackup.com with your Git login and a Proof of Payment," reads the note.
The attack has also been hitting code repositories on similar services Bitbucket and GitLab. To break in, the hacker has been targeting accounts that either used weak passwords or have had their login credentials leaked over seperate services, the different platforms said.
"At this time, it appears that account credentials of some of our users have been compromised as a result of unknown third-party exposures," GitHub said in a statement. "We are working with the affected users to secure and restore their accounts."
View: Article @ Source Site
