Bleeping Computer

GitHub deprecates account passwords for authenticating Git operations

GitHub has announced today that account passwords will no longer be accepted for authenticating Git operations starting tomorrow. This change was first announced last year, in July, when GitHub said ...
ZDNet

GitHub pushes users to enable 2FA following end of password authentication for Git operations

GitHub is urging its base of users to enable two-factor authentication as the platform shakes up how it protects accounts from compromise. Everyone needs a password manager. If you're willing to pay a ...
SDxCentral

Microsoft Gifts Semmle to GitHub, Plans $40B Stock Buyback

Microsoft bolstered its GitHub operations by acquiring software engineering analytics firm Semmle for an undisclosed amount. The move ties in a security component to the open source supply chain.
ZDNet

GitHub shifts away from passwords with security key support for SSH Git operations

When you add a security key to SSH operations, you can use these devices to protect you and your account from accidental exposure, account hijacking, or malware, GitHub security engineer Kevin Jones ...
NewsBytes

GitHub under pressure amid outages, vulnerabilities, and internal breach

GitHub is grappling with frequent outages, security vulnerabilities, and a talent exodus, raising concerns about its stability nearly eight years after Microsoft's acquisition.
Infosecurity-magazine.com

GitHub Updates Security Protocol For Operations Over SSH

The repository hosting service GitHub has announced it is replacing its existing RSA SSH host key with a new one as a precautionary measure after discovering the key was momentarily exposed in a ...
Bleeping Computer

GitHub now supports security keys when using Git over SSH

GitHub has added support for securing SSH Git operations using FIDO2 security keys for added protection from account takeover attempts. Researchers at North Carolina State University (NCSU) found [PDF ...