[SecurityWeek] GitKraken Vulnerability Prompts Action From GitHub, GitLab, Bitbucket

Developers of Git GUI client GitKraken have addressed a vulnerability resulting in the generation of weak SSH keys, and they are prompting users to revoke and renew their keys.

Discovered in the open source library that the Git GUI client uses for SSH key generation, the issue affects all keys issued using versions 7.6.x, 7.7.x, and 8.0.0 of GitKraken.

read more

Source: Read More (SecurityWeek RSS Feed)

You might be interested in …

[ZDNet] Hackers take $600m in ‘biggest’ cryptocurrency theft

All posts, ZDNet

Poly Network has asked for ‘hacked assets’ to be returned by attackers – and it may have received some. Source: Read More (Latest topics for ZDNet in Security)

Read More

Daily NCSC-FI news followup 2021-01-28

Cybersecurity to the Rescue: Pseudonymisation for Personal Data Protection www.enisa.europa.eu/news/enisa-news/cybersecurity-to-the-rescue-pseudonymisation-for-personal-data-protection ENISA’s new report explores pseudonymisation techniques and use cases for healthcare and information sharing in cybersecurity Who’s Making All Those Scam Calls? www.nytimes.com/2021/01/27/magazine/scam-call-centers.html Malware Analysis Report (AR21-027A) – MAR-10319053-1.v1 – Supernova us-cert.cisa.gov/ncas/analysis-reports/ar21-027a ANNOUNCING PWN2OWN VANCOUVER 2021 www.zerodayinitiative.com/blog/2021/1/25/announcing-pwn2own-vancouver-2021 Introducing data breach guidance for individuals and families […]

Read More

[TheRecord] Man who bribed AT&T employees to install malware on the company’s network gets 12 years in prison

A Pakistani man who bribed AT&T employees to install malware on the company’s internal network has been sentenced today to 12 years in prison after he illegally unlocked more than 1.9 million phones, causing the US telco losses in excess of $201 million. Muhammad Fahd, 35, a citizen of Pakistan and Grenada, paid more than […]

Read More