What if GitHub encounters a man-in-the-middle attack that leads to an access certificate error? 03/28 Update SLTechnology News&Howtos

What if GitHub encounters a man-in-the-middle attack that leads to an access certificate error?

2025-03-28 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Internet Technology >

Shulou(Shulou.com)06/02 Report--

This article mainly explains "what to do when GitHub encounters a man-in-the-middle attack that leads to a certificate error in the access report?". Interested friends may wish to take a look. The method introduced in this paper is simple, fast and practical. Let's let the editor take you to learn what to do when GitHub encounters a man-in-the-middle attack that leads to a certificate error.

As of press time, domestic visits to the GitHub website will report certificate errors, as shown in the following figure:

It is understood that GitHub is suspected of being attacked by a man in the middle.

A man-in-the-middle attack (English: Man-in-the-middle attack, abbreviation: MITM) means that an attacker takes over traffic between the two ends of the communication, and the attacker can intercept calls between both sides of the communication and tamper with the content. In order to take over traffic, attackers need to be able to disguise themselves as both ends of the communication without being seen by the other end. DNS spoofing and session hijacking are common man-in-the-middle attacks.

In short, the so-called man-in-the-middle attack is to intercept normal network communication data, and carry out data tampering and sniffing, without the knowledge of both sides of the communication.

Currently, the issuer of this untrusted certificate prompted by GitHub is 346608453@qq.com.

In addition, according to a number of netizens' feedback, JD.com, koajs and other websites also have the same problem, and the invalid certificate also comes from the QQ Mail. Some people suspect that the suspected attacker is a beginner hacker, and the purpose of the attack is probably just for practice / testing, but this time the scope of influence is so wide that it is not like practice.

At this point, I believe that everyone on the "GitHub encountered man-in-the-middle attack led to access report certificate error how to do" have a deeper understanding, might as well to the actual operation of it! Here is the website, more related content can enter the relevant channels to inquire, follow us, continue to learn!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.