SoylentNews is people
SoylentNews
Submitted via IRC for SoyCow0152
Hundreds of developers have had had Git source code repositories wiped and replaced with a ransom demand.
The attacks started earlier today, appear to be coordinated across Git hosting services (GitHub, Bitbucket, GitLab), and it is still unclear how they are happening.
What it is known is that the hacker removes all source code and recent commits from vitcims' Git repositories, and leaves a ransom note behind that asks for a payment of 0.1 Bitcoin (~$570).
The hacker claims all source code has been downloaded and stored on one of their servers, and gives the victim ten days to pay the ransom; otherwise, they'll make the code public.
Source: https://www.zdnet.com/article/a-hacker-is-wiping-git-repositories-and-asking-for-a-ransom/
(Score: 2, Informative) by Anonymous Coward on Monday May 06 2019, @02:13PM
The same way you know that the remote copy of your git repository is the same one you're working on locally: through git tree hashes. If the two aren't the same, git will abort on a diverted history.
(And yes, there's a possible hash collision attack there -- but underhanded C becomes a lot harder if the underhanded code must also match the original file hash).