"GitHub Revokes Code Signing Certificates Stolen in Repo Hack"

After gaining access to some of GitHub's development and release planning repositories, unidentified attackers stole encrypted code-signing certificates for its Desktop and Atom programs. GitHub has not yet found evidence that the password-protected certificates, the Apple Developer ID certificate and the Digicert code signing certificates used for Windows programs, were exploited maliciously. The company noted that this security breach poses no threat to GitHub services and that no unauthorized changes were made to affected projects. This article continues to discuss the GitHub breach in which hackers stole code-signing certificates for GitHub Desktop and Atom programs.

Bleeping Computer reports "GitHub Revokes Code Signing Certificates Stolen in Repo Hack"

Submitted by Anonymous on