Headlines |
2018-07-04 |
Gentoo mirror compromised |
 |
A mirror of the Gentoo distribution's source code, which is hosted on GitHub, was compromised a little over a week ago. While the master copies of information were stored in a safe location on Gentoo servers, an attacker managed to access the GitHub account and alter information. The Gentoo team has published a wiki page which discusses the incident, how it was handled, and what was affected by the attack. "An unknown entity gained control of an admin account for the Gentoo GitHub Organization and removed all access to the organization (and its repositories) from Gentoo developers. They then proceeded to make various changes to content. Gentoo Developers & Infrastructure escalated to GitHub support and the Gentoo Organization was frozen by GitHub staff. Gentoo has regained control of the Gentoo GitHub Organization and has reverted the bad commits and defaced content." The page also includes an analysis of what the team feels was handled well and what could have been handled better in order to improve procedures for future incidents. |
More headlines from this project
Back to News
|
|
|