GitHub revokes a set of encrypted code signing certificates exposed in unauthorized access

MADRID, 31 Jan. (Portaltic/EP) –

GitHub has announced the revocation of a series of certificates that were exposed after detecting unauthorized access to Desktop and Atom repositories, in order to prevent the presence of malicious applications.

Desktop and Atom They are two applications that GitHub facilitates the creation of ‘software’ that have recently been the target of a cyber attacker, who has managed to access the repositories that allow the planning and development of these tools.

This access was made through a personal access token (PAT) committed linked to a machine accountand resulted in cloning repositories and the exfiltration of several encrypted code signing certificates, which indicate the authorship of the application, as explained in the official blog.

From GitHub they indicate that there is no evidence that the services of this platform are at risk, nor that unauthorized changes have been made to the projects. But although there is no evidence that the stolen certificates have been misused or that they have been decrypted, they have decided to revoke those affected.

This decision is made because a malicious actor can use the certificates to signing a tampered app and uploading it to GitHub as if it were a legitimate update.

Related articles

Not only did it go to Benedetto, Diego Martínez would also have deleted another...

The atmosphere has become a little tense Boca Juniors after the statements expressed by Dario Benedettowho last Friday would have responded to Diego Martinez...

The country where mimes are suspected of spying on citizens

Street artists first appeared a few years ago at busy intersections in Islamabad. Covered from head to toe in gold paint, they stood...

Alejandra Jaramillo remembers Efraín through her brother Pablo Ruales at the launch of her...

A Alejandra Jaramillo She was a little nervous at the first event she organized in Miami, United States, to announce their line of keto...