Bleeping Computer

Clone2Leak attacks exploit Git flaws to steal credentials

A set of three distinct but related attacks, dubbed 'Clone2Leak,' can leak credentials by exploiting how Git and its credential helpers handle authentication requests. The attack can compromise ...
TechRadar

This worrying Git flaw could lead to users leaking credentials

Security researcher finds related attacks and dubbed them Clone2Leak This allowed threat actors to leak credentials through Git's credential helper Patches are already available, so update now A ...
TheServerSide

Fix GitHub's 'support for password authentication was removed' error

Community driven content discussing all aspects of software development from DevOps to design patterns. Support for password authentication was removed on August 13 ...
Techzine Europe

CodeBreach enables takeover of AWS GitHub repositories

Wiz discovered a critical vulnerability in AWS CodeBuild that allowed attackers to access core AWS repositories, including ...
TheServerSide

Git commit config and credential confusion causes consternation for customers

Community driven content discussing all aspects of software development from DevOps to design patterns. Thousands of Git users are guilty of a giant security blunder. They inadvertently and ...
Bleeping Computer

Hackers steal 15,000 cloud credentials from exposed Git config files

A large-scale malicious operation named "EmeraldWhale" scanned for exposed Git configuration files to steal over 15,000 cloud account credentials from thousands of private repositories. According to ...