GitHub Hacked (Another Ransomware) – Here is the scary situation most of the programmer and developer were dealing with. GitHub, Gitlab and Bitbucket was been hacked or compromised by the hacker and demanding for the bitcoin to rescue the code. Hackers were wiping the private code repository and threatening the owners to public or release the code if they don’t pay the ransom. This attack is not much highlighted in social media as the previous Ransomware attack was. But still it is equally harming the IT industries.
GitHub Hacked and Ransomware
- The attack was happened few days ago.
- Source Code and commits are been deleted by the hacker.
- Asking for 0.1 bitcoin to rescue the code.
- Targeting small scale companies.
- Large companies like – Google, Microsoft are safe from this attack.
- Now, the problem is been resolved.
This is the most horrifying news in IT world, but though it was happened few days ago and not much people are talking about it. So, I think you should take a look at this situation. So that you can avoid falling in same in future.
In recent days, we all have faced the Ransomware attack in a very large scale. Though the attack on GitHub was not on that scale, but still it is nightmare for the small companies and developer.
On 2 May, Reddit user first posted about the hacking attack, he faced in his GitHub Repository. Likewise many other GitHub users started complaining about the same. That there code get wiped and hacker is asking for the ransom to rescue the code.
The message which is seen by the victims is:
“To recover your lost code and avoid leaking it: Send us 0.1 Bitcoin (BTC) to our Bitcoin address 1ES14c7qLb5CYhLMUekctxLgc1FV2Ti9DA and contact us by Email at email@example.com with your Git login and a Proof of Payment. If you are unsure if we have your data, contact us and we will send you a proof. Your code is downloaded and backed up on our servers. If we don‘’t receive your payment in the next 10 Days, we will make your code public or use them otherwise.”
The large companies like Google, Microsoft was unaffected with this attack as they are using the private servers for managing their GitHub repositories and paying for that too. But the small businesses which can’t afford the private GitHub servers are dealing with this attack and facing a big loss.
Small scale companies are facing lots of problem as the Code which hackers attacked was very sensitive and put them in a huge lost. The hackers were threatening to pay the ransom which is 0.1 bitcoin within 10 days or they will make the Source code public.
The reason for the loop hole behind this attack is that the Git user are not using multi-factor authentication and making their access token public.
Finally this problem was fixed or resolved.