Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.town/notes/9pzhw0w2fkp34wuj">Taggart :donor: (mttaggart@infosec.town)'s status on Thursday, 22-Feb-2024 00:24:15 JST</a><a href="https://infosec.town/@mttaggart" title="mttaggart@infosec.town"><img src="https://gnusocial.jp/theme/gnusocialjp/default-avatar-stream.png" width="48" height="48" alt="Taggart :donor:" style="position: absolute; left: 0; top: 0;">Taggart :donor:</a></section><article><p>Bad news: this appears to be real, corroborated by MS employees.<br><br>Good news: not much of concern in the leak, so it would seem. One exception might be API key/secrets reused elsewhere.<br><br>But Microsoft would never do that 🙃<br><br><a href="https://www.bleepingcomputer.com/news/security/microsofts-github-account-hacked-private-repositories-stolen">www.bleepingcomputer.com/news/security/microsofts-github-account-hacked-private-repositories-stolen</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2744705#notice-5442577">In conversation</a><time datetime="2024-02-22T00:24:15+09:00" title="Thursday, 22-Feb-2024 00:24:15 JST">about 9 months ago</time> <span>from <span><a href="https://infosec.town/notes/9pzhw0w2fkp34wuj" rel="external" title="Sent from infosec.town via ActivityPub">infosec.town</a></span></span><a href="https://infosec.town/notes/9pzhw0w2fkp34wuj">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: www.bleepstatic.com</div><h5><a href="https://www.bleepingcomputer.com/news/security/microsofts-github-account-hacked-private-repositories-stolen/">Microsoft's GitHub account hacked, private repositories stolen</a></h5><div> from <span>@BleepinComputer</span></div></header><div>A hacker has claimed to have hacked into Microsoft's GitHub account and downloaded over 500GB of 'Private' repositories, BleepingComputer has learned.</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Taggart :donor: (mttaggart@infosec.town)'s status on Thursday, 22-Feb-2024 00:24:15 JST Taggart :donor:
Bad news: this appears to be real, corroborated by MS employees.

Good news: not much of concern in the leak, so it would seem. One exception might be API key/secrets reused elsewhere.

But Microsoft would never do that 🙃

www.bleepingcomputer.com/news/security/microsofts-github-account-hacked-private-repositories-stolen
In conversationabout 9 months ago from infosec.townpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: www.bleepstatic.com
  Microsoft's GitHub account hacked, private repositories stolen
  from @BleepinComputer
  A hacker has claimed to have hacked into Microsoft's GitHub account and downloaded over 500GB of 'Private' repositories, BleepingComputer has learned.

Public

Embed Notice

HTML Code

Corresponding Notice