Skip to content

GitHub to roll out 2FA for all contributors starting March 13

Posted by: GuidePoint Security

< 1 min read

March 10, 2023 – Published on SC Magazine

GitHub will begin its official rollout of two-factor authentication for developers who contribute code on the platform, starting March 13.  

The step comes under a plan announced last May to make 2FA mandatory for all contributors by the end of 2023. If successful, the requirement could help to better secure the accounts of over 100 million users, protecting them from software supply chain attacks and other threats levied at the platform.  

Timothy De Block, application security engineering practice lead at GuidePoint Security, added that SMS also adds a measure of convenience, particularly regarding account recovery.  

“If a phone is lost, wiped, or dropped in the toilet, the authentication app is no longer synced with the authentication mechanism of their account. And if users do not have backup codes, it will be difficult to recover the account. But with SMS, they just need to get a new phone with the same number,” said Block. 

Read More HERE.

Categories: Application Security News

GuidePoint Security

Application Security Practice Overview
GuidePoint understands that one size does not fit all when it comes to our client’s approach to Application Security, which is precisely why our practice offerings are custom-tailored to suit each of our client’s unique set of challenges and security requirements
Download

Related Articles

View All

  • Application Security
Application Security Practice Overview
Read More < 1 min read
  • Application Security
Application Security as a Service Overview
Read More < 1 min read
  • Application Security
Why GitHub Won’t Protect PHP
Posted by: Charlton Trezevant
Read More 6 min read