Bleeping Computer

Over 12 million auth secrets and keys leaked on GitHub in 2023

GitHub users accidentally exposed 12.8 million authentication and sensitive secrets in over 3 million public repositories during 2023, with the vast majority remaining valid after five days. This is ...
Bleeping Computer

GitHub makes 2FA mandatory next week for active developers

GitHub will start requiring active developers to enable two-factor authentication (2FA) on their accounts beginning next week, on March 13. Once expanded to the ...
TechCrunch

Better Auth, an authentication tool by a self-taught Ethiopian dev, raises $5M from Peak XV, YC

It’s rare to see a solo founder building a widely adopted developer infrastructure tool. Even more so if the founder happens to be from Africa. Bereket Engida, a self-taught programmer from Ethiopia, ...
CSOonline

GitHub repositories compromised by stolen OAuth tokens

Salesforce-owned PaaS vendor Heroku and GitHub have both warned that compromised OAuth user tokens were likely used to download private data from organizations using Heroku and continuous integration ...