Bleeping Computer

GitHub revokes code signing certificates stolen in repo hack

GitHub says unknown attackers have stolen encrypted code-signing certificates for its Desktop and Atom applications after gaining access to some of its development and release planning repositories.
techtimes

Federal Contractor Acuity Confirms GitHub Breach: What Did Hackers Steal?

Federal contractor Acuity, which works with many US government organizations, has disclosed that there was a security breach in its GitHub repository that led to the pilfering of documents that ...
InfoWorld

Thousands of open source projects at risk from hack of GitHub Actions tool

App development teams who use a popular utility in the GitHub Actions continuous integration and continuous delivery/deployment (CI/CD) platform need to scrub their code because the tool was ...