GitHub – Page 4 – Computer Security Articles

Federal prosecutors this week charged a Seattle woman with stealing data from more than 100 million credit applications made with Capital One Financial Corp. Incredibly, much of this breached played out publicly over several months on social media and other open online platforms. What follows is a closer look at the accused, and what this incident may mean for consumers and businesses.

MalwareBytes Security

GitHub hosted Magecart skimmer used against hundreds of e-commerce sites

April 26, 2019 admin cybercrime, GitHub, Magecart, Magento, skimmer

Credit to Author: Jérôme Segura| Date: Fri, 26 Apr 2019 16:06:12 +0000

Magecart threat actors upload their skimming code onto GitHub in the latest attack against Magento websites.

Categories:

Cybercrime

Tags: GitHub Magecart magento skimmer

Kaspersky Security

GitHub key leaks and how to prevent them

March 28, 2019 admin API keys, Business, GitHub, leaks, SMB, tokens

Credit to Author: Sergey Golubev| Date: Thu, 28 Mar 2019 22:16:38 +0000

Hundreds of thousands of tokens and cryptographic keys have been discovered on GitHub. We explain why this is bad and how to avoid a leak.

Independent Krebs

Google: Security Keys Neutralized Employee Phishing

July 23, 2018 admin 2fa, chrome, Dashlane, dropbox, Duo Security, Edge, Facebook, FIDO Alliance, Firefox, Firefox Quantum, GitHub, Google Advanced Protection, Keepass, lastpass, microsoft, opera, safari, Security Keys, Security Tools, U2F, Web Authentication API, WebAuthn, World Wide Web Consortium, Yubikey

Credit to Author: BrianKrebs| Date: Mon, 23 Jul 2018 11:34:38 +0000

Google has not had any of its 85,000+ employees successfully phished on their work-related accounts since early 2017, when it began requiring all employees to use physical Security Keys in place of passwords and one-time codes, the company told KrebsOnSecurity.

Security TrendMicro

This Week in Security News: Macs, Hacks and Attacks

June 22, 2018 admin cryptocurrency, Current News, Forrester Wave™, GitHub, HealthEquity, Managed Detection and Response

Credit to Author: Jon Clay (Global Threat Communications)| Date: Fri, 22 Jun 2018 13:30:33 +0000

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, GitHub was hacked via their official account with cryptocurrency Sycoin. Also, a phishing attack targeting trustee company HealthEquity led to the release of 23,000 Subscribers’ PHI. Read…

The post This Week in Security News: Macs, Hacks and Attacks appeared first on .

MalwareBytes Security

Malicious cryptomining and the blacklist conundrum

March 26, 2018 admin adblockers, blacklist, coinhive, cryptominers, cryptomining, GitHub, Threat analysis

Credit to Author: Jérôme Segura| Date: Mon, 26 Mar 2018 15:00:00 +0000

When threat actors take to free and disposable cloud services, the battle against malicious cryptomining becomes a lot more difficult.

Categories:

Tags: adblockers blacklist coinhive cryptominers cryptomining GitHub

(Read more…)

The post Malicious cryptomining and the blacklist conundrum appeared first on Malwarebytes Labs.

MalwareBytes Security

Massive DDoS attack washes over GitHub

March 2, 2018 admin criminals, ddos, DDos attack, GitHub, memcached, memcrashed, memcrashing, Threat analysis

Credit to Author: Christopher Boyd| Date: Fri, 02 Mar 2018 19:26:48 +0000

We take a look at the colossal DDoS attack on GitHub, the largest-ever on record. How did threat actors do it, and what can companies do to protect against it?

Categories:

Tags: ddos DDos attack GitHub memcached memcrashed memcrashing

(Read more…)

The post Massive DDoS attack washes over GitHub appeared first on Malwarebytes Labs.