Hacker Claims To Have Breached Microsoft’s GitHub Private Repositories
A hacker named Shiny Hunters contacted Bleepingcomputer to tell them that he had hacked into the Microsoft GitHub account, gaining full access to the software giant’s ‘Private’ repositories.
A hacker claims to have stolen over 500GB of data from Microsoft’s private GitHub repositories, according to BleepingComputer.
Source : BleepingComputer
The individual told Bleepingcomputer that they have downloaded 500GB of private projects and initially planned on selling it, but has now decided to leak it for free.
Private Repositories Leaked
As a teaser, the hacker offered 1GB of files on a hacker forum for registered members to use site ‘credits’ to gain access to the leaked data. As some of the leaked files contain Chinese text or references to latelee.org or Chinese text, other threat actors on the forum do not feel that the data is real.
In a directory listing and samples of other private repositories sent to BleepingComputer, the stolen data appears to be mostly code samples, test projects, an eBook, and other generic items. Some private repositories look a bit more interesting such as ones named some ‘wssd cloud agent’, a The Rust/WinRT language projection’, and a ‘PowerSweep’ PowerShell project. Overall, from what was shared, there does not appear to be anything significant for Microsoft to worry about, such as Windows or Office source code.
Cyber intelligence firm Under the Breach, who saw the leak on the hacker forum, also does not think there is much to worry about. They did express concern that private API keys or passwords could have accidentally been left behind in some of the private repositories like other developers have done in the past.
HUGE: The person behind the recent Tokopedia hack claiming he has 500GB (uncompressed) worth of private Microsoft source code, containing mostly Azure Source code, as well as Office and some windows runtime files / APIs.— Under the Breach 🦠 (@underthebreach) May 6, 2020
Appears to be stolen from private Github repositories. pic.twitter.com/wKUOi0nDkk
Microsoft employee Sam Smith replied to Under the Breach’s tweet stating that he thought the leak was fake as “Msft has a “rule” that GitHub repos must be public within 30 days.”
BleepingComputer has contacted Microsoft to confirm if these are indeed legitimate files but have not received a reply.