Identity, DevSecOps

Immediate 2FA activation urged by GitHub

All code-contributing GitHub users have been advised by the software developer platform to enable two-factor authentication by Jan. 19 to prevent having limited account functionality, according to BleepingComputer. GitHub has alerted users about the immediate activation of 2FA through emails and site warnings that pop up upon logging into accounts as part of its efforts to prevent supply chain attack risks. "If you have not yet enrolled by that date, your ability to access will be limited until you finish the enrollment process," said GitHub, which noted that only the GitHub site and not enterprise or business accounts require 2FA activation. Enabling 2FA on GitHub could be performed through security keys, authenticator apps, GitHub mobile, and SMS, with the platform recommending the implementation of two or more of the aforementioned methods. While 2FA can no longer be deactivated after being enabled before the deadline, modification of configured verification techniques will still be permitted.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.