GitHub switches to use of mandatory two -factor authentication

GITHUB announced about the solution until the end of 2023, translate all users of the GitHub.com service involved in the development of code for the mandatory use of two -factor authentication (2FA). According to GitHub, receiving access to repositories as a result of capture of accounts is one of the most dangerous threats, since in the case of a successful attack, a substitution of hidden changes in popular products and libraries used as dependencies can be made.

The new requirement will enhance the protection of the development process and protect the repositories from making malicious changes as a result of leakage of the accounting data, using the same password on the compromised site, hacks of the developer’s local system or the use of social engineering methods. According to GitHub statistics, only 16.5% of active service users are currently using two -factor authentication. By the end of 2023, GitHub intends to prohibit the possibility of sending changes without the use of two -factor authentication.

/Media reports.