A hacker named Shiny Hunters claims to have stolen 500 GB of data from Github’s private repositories beeping computers said.
The hacker contacted beeping computers in which he told that he had hacked into Microsoft’s private Github’s repositories by gaining full access to the private Github’s repositories.
According to the file stamps of the leaked files, the breach had occurred on March 28th, 2020. He also told that at present he didn’t have access to the account. The hacker told that after gaining access to the accounts the hacker downloaded 500GB of private projects.
They said that they first planned to sell the data but now they had decided to leak all those data for free.
Microsoft’s Private repositories leaked
As a sample, the hacker had uploaded 1 GB of leaked data on a hacking forum. According to beeping computers, most of the files contained the code samples, test projects, an eBook, and other generic items.
However, some of the interesting directories named a ‘PowerSweep’ PowerShell project and “wssd cloud agent” a The Rust/WinRT language projection’. seems to be interesting.
But talking about the data that was shared they found nothing that Microsoft should worry about like Windows or Office source code.
Also, according to the cybersecurity firm Under the Breach who first saw the data on the hacking forum found nothing that the tech Giant should worry about.
They did express concern that private API keys or passwords could have accidentally been left behind in some of the private repositories like other developers have done in the past.
Bleeping computers
In reply to the context a Microsoft employee Sam Smith said that at first, they thought that the breach was fake but as Msft has a rule that Github repository must be private within 30 days. Now the tweet is no longer available.