GitHub is a valuable resource to software developers and so it is a key tool being used in many software supply chains. And we now know how vulnerable we all are to software supply chain hacking – look at this example.
So my response when I saw this was the same as the article’s author – why wait until the end of 2023 to implement what is one of the most effective (if flawed (Grimes, 2019)) defences against cyber attacks – Multi Factor Authentication.
GitHub to require 2FA for active coders by late 2023 • The Register
Further Reading
2020 United States federal government data breach – Wikipedia
References
Grimes, R. (2019). The many ways to hack 2FA. Network Security, 2019(9), 8-13.
