Bleeping Computer

Hackers stealing GitHub accounts using fake CircleCI notifications

GitHub is warning of an ongoing phishing campaign that started on September 16 and is targeting its users with emails that impersonate the CircleCI continuous integration and delivery platform. The ...
Bleeping Computer

GitHub fixes bug causing users to log into other accounts

Last night, GitHub automatically logged out many users by invalidating their GitHub.com sessions to protect user accounts against a potentially serious security vulnerability. Earlier this month ...
CSOonline

GitHub accounts targeted with fake security alerts

In a new phishing campaign, GitHub developers are being targeted with fake “Security Alerts” where they are prompted to authorize a malicious OAuth application. Successful execution of the Click-fix ...
TechRepublic

How to secure your GitHub account with two-factor authentication

How to secure your GitHub account with two-factor authentication Your email has been sent GitHub is now prompting developers and administrators who use the site to secure their accounts with ...