GitHub Hit by Hacker : Asking ransom from Developers in order to Restore their Source Codes
By MYBRANDBOOK
Hackers have hit open source software development platform Microsoft-owned GitHub, removing code repositories and asking ransom from developers in order to restore their source codes.
According to a report online on Friday, hundreds of developers have had their source code repositories wiped and replaced with a ransom demand on Microsoft-owned GitHub.
"What is known is that the hacker removes all source code and recent commits from victims' Git repositories, and leaves a ransom note behind that asks for a payment in Bitcoins," the report added.
The hackers claim all source code has been downloaded and stored on one of their servers.
"To recover your lost code and avoid leaking it: Send us 0.1 Bitcoin (BTC) to our Bitcoin address 1ES14c7qLb5CYhLMUekctxLgc1FV2Ti9DA and contact us by email at admin@gitsbackup.com with your Git login and a proof of payment," read the ransom
message.
"If you are unsure if we have your data, contact us and we will send you a proof. Your code is downloaded and backed up on our servers.
"If we don't receive your payment in the next 10 days, we will make your code public or use them otherwise," the hackers' message read.
A GitHub search revealed that at least 392 GitHub repositories have been compromised.
Kathy Wang, Director of Security for GitLab, was quoted as saying that they immediately began investigation into the issue.
"We have identified affected user accounts and all of those users have been notified. As a result of our investigation, we have strong evidence that the compromised accounts have account passwords being stored in plaintext on a deployment of a related repository," Wang told on the report.
"We are still investigating the issue but we found evidence the 'update' scripts in some of the affected repositories hardcoded credentials in an insecure location in the deployed application," she added in an email, which notes that GitLab users can also restore their code repos. More instructions are available here.
Jeremy Galloway, a security researcher at Atlassian, which owns BitBucket, told Motherboard that the company has seen a lot of users' repositories getting hit by these hackers.
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
The latest version of X helps prevent deepfakes on social medi
To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...
India and Namibia collaborate on a payment system similar to U
Once operational, the platform will enable digital transactions in Namibia,...
Sebi issues show-cause notices to six Adani group firms
Sebi issued show-cause notices to six Adani Group firms, including Adani ...
HAVELLS INDIA LTD.
SAFE SECURITY SERVICES PVT. LTD.
AGGRESSIVE ELECTRONICS MANUFACTURING SERVICES PVT. LTD.
MICROMAX INFORMATICS LTD.
Technology Icons Of India 2023: Dr. Sanjay Bahl
Sanjay Bahl is currently with the Indian Computer Emergency Response T...
Technology Icons Of India 2023: Anil Kumar Aggarwal
Anil Agarwal is an Indian billionaire businessman who is the founder a...
Technology Icons Of India 2023: Ashish Kumar Chauhan
Ashish works as the CEO of the National Stock Exchange (NSE). He is al...
HPCL is transforming the energy landscape, across the nation and beyond
HPCL is world-class energy company known for caring and delighting the...
CSCs enabling rural India digitally empowered
Common service centres (CSCs) are digital access points under the Digi...
DRDO is India's largest and most diverse research organisation
DRDO is the R&D wing of Ministry of Defence, Govt of India, with a vis...
INFLOW TECHNOLOGIES PVT. LTD.
Inflow Technologies is a niche player in the IT Infrastructure Distrib...
INGRAM MICRO INDIA PVT. LTD.
Ingram Micro India, a large national distributor offers a comprehensiv...
B D SOFTWARE
BD Software is the distributor of IT security solutions in India. The ...