The open-source Apache Software Foundation pulled its Apache.org Web site offline for about three hours today because of server hack caused by a compromised SSH key.
A brief message posted on the site (see image below) made it clear the compromise was "not due to any software exploits in Apache itself", but was actually caused by a compromised SSH key.
The group did not say which Apache software servers were affected. UPDATE: An initial report from Apache is now available.
* Screenshot via The H Security. More at Threatpost.com.
Programming languages: Python overtakes Java on GitHub as Google Dart use soars
Developers love Python, Microsoft's GitHub says, also revealing the site's biggest open-source projects.
Microsoft's Rust experiments are going well, but some features are missing
Microsoft rewrote a low-level Windows component in Rust. Calls the experience "generally positive."
Graph for the mass market: Neo4j launches Aura on Google Cloud
Neo4j just launched its cloud offering, which it says will make graph mainstream. We discuss the offering with CEO Emil Eifrem, and take a look at where the graph market is right now. ...
Between 200,000 and 240,000 Magento online stores will reach EOL next year
Many online stores will need to upgrade their backends in the coming nine months if they want to avoid getting hacked.
Uber Air takes one software step toward the sky
Tomorrow's flying Uber vehicles will rely on Cesium's open-source 3D geospatial software for its in-air "driving."
Github tops 40 million developers as Python, data science, machine learning popularity surges
Github, owned by Microsoft, said it had more than 10 million new users, 44 million repositories created and 87 million pull requests in the last 12 months. ...
OpenAI's 'dangerous' AI text generator is out: People find GPT-2's words 'convincing'
The problem is the largest-ever GPT-2 model can also be fine-tuned for propaganda by extremist groups.
Windows tech support scam: Attackers use this Firefox bug to lock up your screen
Scammers find a way to bypass Mozilla's fix for login prompt spam to launch lock screen attacks.
Libarchive vulnerability can lead to code execution on Linux, FreeBSD, NetBSD
Bug discovered by Google. Impacts Linux and BSD distros, but not Windows and macOS.
Join Discussion