GitHub’s 2FA rollout a success, says platform


Since GitHub rolled out its mandatory two-factor authentication (2FA) practices, there has been a 54% increase in the adoption of 2FA among all active code contributors.

GitHub has implemented two-factor authentication practices to protect its software ecosystem and developers from cyberattacks.

The developer platform GitHub recently said in a blog post that it has “dramatically increased 2FA adoption on its platform” to secure the software ecosystem.

GitHub has increased 2FA adoption as part of its responsibility to “make the software ecosystem more secure,” the blog post reads.

“Preventing the next cyberattack depends on getting the security basics right, and efforts to secure the software ecosystem must protect the developers who design, build, and maintain the software we all depend on,” GitHub said.

In May 2022, GitHub set out on a quest to secure supply chain security by “addressing the first link in the chain – the security of developers.”

The developing platform states that two-factor authentication “remains one of the best defenses against account takeover and subsequent supply chain compromise.”

GitHub requires all those who contribute code on GitHub.com to enable one or more forms of 2FA by the end of 2023.

The rollout was supposedly gradual, giving developers enough time to adapt. Now, GitHub has finally shared its results of the 2FA rollout.

The company reports a “dramatic increase in 2FA adoption on the website,” which centers around users with “the most critical impact on the software supply chain.”

Users are implementing more secure means of 2FA, such as passkeys and other authentication practices.

The website has seen an opt-in rate of almost 95% across code contributors who received the 2FA requirement in 2023.

“This has led to an overall increase (54%) in 2FA adoption for all active contributors on the platform,” GitHub said.

Meanwhile, 1.4 million passkeys have been registered on GitHub since July 2023, as this is one of the most secure forms of 2FA, the company states.

While increasing the number of users adopting secure 2FA practices, this rollout has reduced the overall share of SMS as a second factor by almost 25%, GitHub said.

GitHub is ambitious in its desire to get all those contributing to code on its website to adopt 2FA practices while encouraging other platforms to make efforts to secure the software ecosystem.


More from Cybernews:

Cold fusion: a reality in “Fallout,” an unproven controversy in real life

Tesla driver admits he was using Autopilot before fatal accident

TikTok CEO vows to 'prevail' and defeat US restrictions

US Senate passes TikTok divestment-or-ban bill

Ransomware payments surpass $1 billion in 2023, report finds

Subscribe to our newsletter



Leave a Reply

Your email address will not be published. Required fields are markedmarked