Bleeping Computer

GitHub revokes code signing certificates stolen in repo hack

GitHub says unknown attackers have stolen encrypted code-signing certificates for its Desktop and Atom applications after gaining access to some of its development and release planning repositories.
ZDNet

Hacker gains access to a small number of Microsoft's private GitHub repos

A hacker has gained access to a Microsoft employee's GitHub account and has downloaded some of the company's private GitHub repositories. The intrusion is believed to have taken place in March, and ...
PC World

User Hacks GitHub to Showcase Vulnerability After Rails Developers Dismiss His Report

A user has hacked into the official GitHub-hosted Ruby on Rails code repository and bug tracker on Sunday in order to show the Rails development team how serious a vulnerability was. Ruby on Rails, ...
InfoWorld

Thousands of open source projects at risk from hack of GitHub Actions tool

App development teams who use a popular utility in the GitHub Actions continuous integration and continuous delivery/deployment (CI/CD) platform need to scrub their code because the tool was ...