Skip to main content

Search

Items tagged with: GitHub

RE: techhub.social/@Techmeme/11660…

Remember this whenever you hear claims that your data is secure on some system or other that you do not own and control.

Like all that additional data governments want to gather via the slippery slope of “age verification” in the EU.

The only data that is actually secure on a third party is data you haven’t shared with the third party.

Hence: data minimisation.

Had I mentioned GDMR yet today? Because I feel I might have. But hey, here it is again:

ar.al/2018/11/29/gdmr-this-one…

#data #security #privacy #GDMR #microsoft #github #hack


GDMR: this one simple regulation could end surveillance capitalism in the EU

GDMR: The regulation EU citizens deserve. No, you didn’t misread it and, no, it’s not a typo. GDMR – the General Data Minimisation Regulation – can end surveillance capitalism in the EU. The problem is that no such regulation exists.
Aral Balkan

Techmeme

2026-05-20 09:01:59

mastodon - Link to source

GitHub confirms breach of ~3,800 repositories after one of its employees installed a malicious VS Code extension; TeamPCP claimed responsibility for the hack (Sergiu Gatlan/BleepingComputer)

bleepingcomputer.com/news/secu…
techmeme.com/260520/p14#a26052…



GitHub confirms breach of ~3,800 internal repositories after one of its employees installed a malicious VS Code extension; TeamPCP claimed responsibility

By Sergiu Gatlan / BleepingComputer. View the full context on Techmeme.
Techmeme

#security #github #privacy #microsoft #hack #Data #gdmr

info on the github breach appears to only be available on xitter 🙄 , I fished it out for you.

#github

post from github on May 20th, 2026: We are sharing additional details regarding our investigation into unauthorized access to GitHub's internal repositories. Yesterday we detected and contained a compromise of an employee device involving a poisoned VS Code extension. We removed the malicious extension version, isolated the endpoint, and began incident response immediately. Our current assessment is that the activity involved exfiltration of GitHub-internal repositories only. The attacker’s current claims of ~3,800 repositories are directionally consistent with our investigation so far.
#github

🚨 GitHub is investigating unauthorized access to their internal repositories
xcancel.com/github/status/2056…

#github #cybersecurity

GitHub (@github)

We are investigating unauthorized access to GitHub’s internal repositories. While we currently have no evidence of impact to customer information stored outside of GitHub’s internal repositories (such as our customers’ enterprises, organizations, and…
Nitter
#github #cybersecurity

🔥BREAKING: GitHub's internal repositories were accessed by unauthorized users, but fear not, it seems their greatest #security threat is JavaScript-disabled browsers. 🚀 It's comforting to know that while our data is at risk, #JavaScript remains the true gatekeeper of internet safety. 🙃
twitter.com/github/status/2056… #GitHub #InternetSafety #DataBreach #HackerNews #ngated

(Nitter addon enabled: Twitter links via https://nitter.privacytools.io)

#security #github #javascript #databreach #hackernews #internetsafety #ngated

GitHub recently announced that starting with v2.91.0 GitHub CLI will start sending pseudonymized telemetry data back to GitHub.

github.blog/changelog/2026-04-…

Since this is an opt-out feature, most users will have it activated without knowing it. This is unacceptable in my opinion. So I took the liberty of turning this into an opt-in, disabled by default for nixpkgs.

github.com/NixOS/nixpkgs/pull/…

#GitHub #nixos #nixpkgs #privacy


GitHub CLI: Opt-out usage telemetry - The GitHub Blog

With the release of v2.91.0, GitHub CLI sends pseudonymous usage telemetry to help us improve the product. We want you to understand what we send and why. Why we collect…
Allison (The GitHub Blog)
#github #privacy #nixos #nixpkgs

hey "haha github uptime lol" and all that but this is serious: some pull request merges were completely mangled yesterday and the repo may not be in the state that its maintainers expect. If your project processed any updates yesterday, please double-check githubstatus.com/incidents/zsg…

#github


Incident with Pull Requests

GitHub's Status Page - Incident with Pull Requests.
www.githubstatus.com
#github