The GitHub account of a well-known company called canonical ltd, the company behind Ubuntu and number-one Ubuntu services provider, was hacked on last July 6.
Hackers were able to crack the Github account and create 11 new empty repositories with the name of CAN_GOT_HAXXD. Now the 11 repositories have been removed from Github account. After this incident, Canonical says that no source is changed by hackers, but their identity couldn’t be detected yet.
The Ubuntu Security team issued the following statement about this incident:
We can confirm that on 2019-07-06 there was a Canonical owned account on GitHub whose credentials were compromised and used to create repositories and issues among other activities
Canonical has already removed compromised GitHub account from Canonical organization and they still investigating this incident. Fortunately, this attack was not affected to the source code. According to the current official updates from Ubuntu, there is no personal data revealed. Ubuntu also said that they made a launchpad completely separated from the GitHub. So the source code is in a completely safe zone.
This is not the very first time Canonical and other Linux distros have been a victim of a hacker.
Ubuntu will publish updates on their official website after they complete this investigation into the incident and make sure there is no critical damage in their source code.