I don't see that even a real attack taking out every ATM in Iran would qualify as the largest anything in history. There aren't enough ATMs in the country.
You're assuming that the breach was done through the UI and not for example an oauth token or ssh key that was stolen from a developer's machine and used to download the source code by the attacker.
Another comment mentions GitHub themselves detecting the breach - in this case it's unlikely to be done via a compromised developer's laptop as the access would otherwise look normal and wouldn't trigger GH's security alerts.
Meh... I do this every 6-8 months as a principal engineer. I've had many legit use cases.: Understanding our overall dependency tree, validating code coverage assumptions, seeing which projects built still, testing out prototype profiler reports, inspecting the code to see how hard adding x pattern would be, quantifying code change patterns over the pandemic, seeing which uses of the AWS sdk or internal clients were instrumented with metrics, seeing what pct would build under make/go build/bazel/etc.
Anyway many legit reasons. Should it set off an alarm? Probably. Can you say before you do it? For sure!
I think you're confusing storing user password for access to Okta vs storing passwords in Okta for access to other applications.
If you're going to use Okta as a password manager and store passwords to access other applications you can't hash the password because it irreversible and you won't be able to get the real password to authenticate with the other application. So you must encrypt the passwords instead.
Yes, a shitty cycle in a shitty world. If not for the threat of China, I don't think the U.S. military industrial complex would have as much merit, but, under that (growing) threat, I think anyone who values freedom, democracy, and progressive ideals should see merit in the U.S. maintaining and growing capability.
To do that, it seems like the defense industry needs "stuff to do". Like a muscle, that sector atrophies if left unused. It's counterintuitive, though -- why spend so much money on a glorified Skunk Works project like the F35? Why double down and start producing hundreds of them despite their issues? Because it generates/maintains experience and lessons and keeps the metabolic pathways that turn material into materiel active. If you skipped the extra steps and had the government just sustain the defense industry on welfare while it does nothing right up until we have a massive conflict, things are going to go much more poorly for you.
