Hello, welcome to the Tuesday, July 9th, 2019 edition of the San San Bernard Storm Center's Stormcast.

My name is Johannes Ulrich.

And today I'm recording from London, England.

This weekend, credentials for a GitHub account associated with canonical were apparently compromised,

and this account was then used to add a number

of repository as well as adding a few issues to canonical projects.

This is important because Canonical is the company behind Ubuntu, one of the more commonly used Linux distributions.

Now, the entire impact isn't clear yet, and as a canonical employee stated,

an investigation is still underway.

Doesn't appear like anything too critical, got modified.

Launchpad, which is sort of the distribution system

that canonical uses for Bantu was not affected by this compromise of the GitHub

account so right now it doesn't look like you have to do anything if you're using

Ubuntu maybe if you're using GitHub make sure

that you're enabling two-factor authentication and that you are regularly reviewing any accounts

associated with your projects and I'm looking forward to find out what exactly happened here

in canonical's case and how they detected the compromise and

how they actually then responded in terms of figuring out what this rogue user may have

possibly done to their software and Midgecard attacks are in the news again.

This time Sanquin Security Labs, a company that specializes in responding to these type

of attacks, detected, 962, preached web stores on July 4th last week.

This, they say, is part of a larger automated campaign. They're scanning

...