GitHub account of Canonical Ltd., the company that develops the Ubuntu Linux distribution, was hacked on Saturday, July 6.
“We can confirm that on 2019-07-06 there was a hacked GitHub account whose credentials were used to creation αποθετηρίων και θεμάτων μεταξύ άλλων δραστηριοτήτων”, ανέφερε η ομάδα security of the Ubuntu distribution.
Canonical has removed the infringed account from GitHub and is still investigating the extent of the violation, but there is no indication at this time that source code or PII has been affected.
In addition, the Launchpad infrastructure, in which Ubuntu distribution is being deployed and maintained, has been disconnected from GitHub and there is no evidence that it has been compromised.
The Ubuntu Security Team said it plans to publish a public update when it finishes its investigation of the incident, and after carrying out more checks.
According a mirror of the hacked account the Canonical account, the hacker created 11 new GitHub repositories on Canonical's official channel. All new repositories were empty.
Two days prior to the incident, the Bad Packets electronic security services company detected online scans for Git settings files. Such files can often contain Git account credentials, such as those used for code management at GitHub.com.
This weekend security incident is not the first thing the company is experiencing.
Recall that the official Ubuntu forums were violated on three different occasions - in July 2013, the July of 2016 and in December of 2016.
Hackers stole them data 1,82 million users in the breach of July 2013, the data of two million users in July 2016, while in December 2016 a deface took place on the forum.
Do you use Ubuntu? Try the real thing
____________________
- Bootable Windows PE recovery discs that will store your system
- Updates for Samsung scams for 10 millions of users
- Microsoft may close your account after two years of inactivity, unless ..
