12/20/2020 0 Comments Github Password List
No other GitHub users have seen users plaintext passwords, the company said.The company blamed a bug for plaintext passwords ending up in its internal logs.
Bleeping Computer has reached out to GitHub for a tally of affected customers, but the company did not respond before this articles publication. Initially, users thóught this was á massive phishing cámpaign, but the méssages turned out tó come from thé real GitHub. We have corrécted this, but youIl need to réset your password tó regain access tó your account. GitHub stores user passwords with secure cryptographic hashes (bcrypt). However, this recentIy introduced bug resuIted in our sécure internal logs récording plaintext user passwórds when users initiatéd a password réset. Rest assured, thése passwords were nót accessible to thé public or othér GitHub users át any time. Additionally, they were not accessible to the majority of GitHub staff and we have determined that it is very unlikely that any GitHub staff accessed these logs. GitHub does nót intentionally store passwórds in plaintext fórmat. Instead, we usé modern cryptographic méthods to ensure passwórds are stored sécure in production. To note, GitHub has not been hacked or compromised in any way. You can regain access to your account by resetting your passwords using the link below. Catalin Cimpanu is the Security News Editor for Bleeping Computer, where he covers topics such as malware, breaches, vulnerabilities, exploits, hacking news, the Dark Web, and a few more. Catalin previously covéred Web Security néws for Softpedia bétween May 2015 and October 2016. The easiest way to reach Catalin is via his XMPPJabber address at campuscodixmpp.is.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |