Submission + - GitHub hacked due to Rails vulnerability (arstechnica.com)
An anonymous reader writes: A Russian hacker demonstrated that GitHub was vulnerable to a so-called mass assignment attack. Over the weekend Egor Homakov gained admin access to the Ruby on Rails repository (including write access to the code repo) and posted a bug report 1,001 years in the future. In response GitHub quietly suspended his account and made a terse post to their blog. No word yet on whether other repositories have been compromised.