Millions of developers could soon be exposed to MITM attacks as Githubโs private SSH key has been published. Developers must accept a new host key when reconnecting. If this is not matched with the fingerprint published by Github, this enables the attack: github.blog/2023-03-23-we-updaโฆ #GitHub #MITM
We updated our RSA SSH host key | The GitHub Blog
At approximately 05:00 UTC on March 24, out of an abundance of caution, we replaced our RSA SSH host key used to secure Git operations for GitHub.com.Mike Hanley (GitHub)
This entry was edited (2 years ago)