On the official page of Canonical on GitHub the appearance of ten empty repositories with the names "CAN_GOT_HAXXD_N". Currently, these repositories have already been deleted, but their traces have settled in . There is no information about account compromise or vandalism by employees yet. It is also not yet clear whether the incident affected the integrity of existing repositories.
Addendum: David Britton (), Vice President of Canonical, the fact that the account of one of the developers who has access to GitHub was compromised. The compromised account was used to create the repositories and issue. No other actions have been recorded yet. There are currently no signs that the attack affected the source texts or personal data.
There are also no traces of gaining access to the Launchpad infrastructure, which is used to build and maintain the Ubuntu distribution (access to Launchpad is separate from GitHub). Canonical has blocked the problematic account and removed the repositories created with it. An investigation and infrastructure audit is underway, after which an incident report will be published.
Source: opennet.ru