Late last month, an attacker broke into Gentoo’s Github repository, removed all the developers and started adding malicious changes and defacements. Gentoo quickly recovered their Github account, but had to keep it down for five days to recover. However, today’s video isn’t about this breach per say, but what we all can learn from it. This week, Gentoo released a very transparent incident report or debrief that shares exactly how the breach happened, what the organization did right, and some mistakes they made too. It’s rare and valuable for organizations to freely share the details about security incidents as we can all learn from their mistakes and successes. Watch the video below to learn how this hack happened, and what you can do to avoid similar attacks yourself.
Episode Runtime: 3:23
Direct YouTube Link: https://www.youtube.com/watch?v=ao0cHIR9XO4
- Gentoo’s official June 2018 breach incident report – Gentoo.org
- Article on the original Gentoo Github breach –The Register
- Three mistakes Gentoo made that contributed to the breach – The Register
—Corey Nachreiner, CISSP (@SecAdept)
Leave a Reply