• Latest
  • Trending
  • All
  • Industry
  • Compliance
  • Global Trade
  • Industry
  • Sustainability & Ethics
  • Video
  • Security & Risk
GitHub Enhances Software Supply Chain Security with 2FA Initiative

GitHub Enhances Software Supply Chain Security with 2FA Initiative

04/26/2024
Sweeping New U.S. Tariffs Take Effect Across Dozens of Countries

Sweeping New U.S. Tariffs Take Effect Across Dozens of Countries

08/08/2025
Higher Tariffs Imposed on Imports from Dozens of Countries

Higher Tariffs Imposed on Imports from Dozens of Countries

08/08/2025
Bank of England Reduces Interest Rate, Monitors Tariff Impact

Bank of England Reduces Interest Rate, Monitors Tariff Impact

08/08/2025
Philippine Semiconductor Sector Expresses Concern Over Potential U.S. Tariffs

Philippine Semiconductor Sector Expresses Concern Over Potential U.S. Tariffs

08/08/2025
U.S. Implements Broad Tariffs as Economic Indicators Shift

U.S. Implements Broad Tariffs as Economic Indicators Shift

08/08/2025
Connect Cargo Pvt Ltd Launches Free Global Tariff Lookup Tool

Connect Cargo Pvt Ltd Launches Free Global Tariff Lookup Tool

08/08/2025
Philippine Exporters to Benefit from U.S. Tariff Cut to 19%

Philippine Exporters to Benefit from U.S. Tariff Cut to 19%

08/07/2025
Tariff Shake-Up: Southeast Asia Alarmed by U.S. Transshipment Policy

Tariff Shake-Up: Southeast Asia Alarmed by U.S. Transshipment Policy

08/07/2025
New U.S. Tariff Policy on Transshipped Goods Worries Southeast Asia

New U.S. Tariff Policy on Transshipped Goods Worries Southeast Asia

08/07/2025
Southeast Asian Economies React to Rising U.S. Tariff Measures

Southeast Asian Economies React to Rising U.S. Tariff Measures

08/07/2025
U.S. Transshipment Tariff Raises Concerns for Southeast Asian Economies

U.S. Transshipment Tariff Raises Concerns for Southeast Asian Economies

08/07/2025
SAYTA Launches Free Global Tariff Lookup Tool

SAYTA Launches Free Global Tariff Lookup Tool

08/08/2025
supplychainreport
Sunday, August 10, 2025
  • Home
  • Industry
    • Supply Chain
    • Logistics & Transportation
    • Importing & Exporting
    • Manufacturing
    • Warehousing & Distribution
  • Compliance
    • Supply Chain Transparency
    • Anti-Money Laundering (AML)
    • Know Your Customer (KYC)
    • Risk Management
    • Export Controls
    • Sanctions
  • Global Trade
    • Market Trends
    • Economic Indicators
    • Sourcing
    • Trade Policies
    • International Relations
    • Trade Agreements
    • Tariffs & Duties
    • Import/Export Statistics
  • Luxury Goods
  • Industry
    • Blockchain in Supply Chain
    • Importing & Exporting
    • Automation & Robotics
    • Artificial Intelligence in Trade
    • Data & Analytics
  • Sustainability & Ethics
    • Green Supply Chains
    • Sustainable Logistics
    • Ethical Sourcing
    • Corporate Social Responsibility
    • Environmental Policies
  • Security & Risk
    • Cybersecurity in Trade
    • Fraud & Scams
    • Risk Mitigation
    • Security Protocols
    • Data Protection
  • ITC News
    • ITC Featured Members
    • ITC Business Councils Highlights
  • Events
    • Upcoming Conferences
    • Upcoming FREE Educational Webinars
No Result
View All Result
supplychainreport
No Result
View All Result

GitHub Enhances Software Supply Chain Security with 2FA Initiative

by Geraldine S.
04/26/2024
in Compliance, Supply Chain Transparency

GitHub has announced significant progress in securing the software supply chain through its two-factor authentication (2FA) initiative for code contributors. The initiative, launched in 2023, aimed to bolster defenses against potential supply chain attacks, has resulted in a notable increase in 2FA adoption, particularly among users with a significant impact on software development and distribution. Over the past year, GitHub saw a dramatic increase in the use of 2FA on its platform, with a shift towards more secure methods such as passkeys, which are supported by Webauthn. The transition to these secure methods has led to a reduction in the number of 2FA-related support tickets, thanks to comprehensive user-focused research, design improvements, and support process enhancements.

Organizations like RubyGems, PyPI, and AWS have joined GitHub in adopting higher security standards, significantly increasing 2FA usage across the software supply chain. Mike Hanley, Chief Security Officer at GitHub, expressed satisfaction with the initiative’s outcomes, stating, “Preventing the next cyberattack depends on getting the security basics right. Our efforts to secure the software ecosystem must protect the developers who design, build, and maintain the software we all depend on.” He highlighted the necessity of robust multi-factor authentication to prevent account takeovers and further protect the supply chain. The 2FA requirement at GitHub has seen nearly 95% compliance among code contributors, with a 54% rise in overall 2FA adoption among active users on GitHub.com since its introduction. The platform has promoted the adoption of passkeys, which combine high security with ease of use, resulting in nearly 1.4 million passkeys being registered on GitHub.com by early 2024. While GitHub continues to support SMS as a 2FA option, it encourages users to opt for more secure methods whenever possible, which has led to a 23% decline in SMS-based 2FA usage within a year.

YOU MAY ALSO LIKE

Trezix Software Pvt Ltd Nominated for Go Global Awards 2025

Trezix: Transforming Global Trade with AI-Driven Orchestration

Improvements in the enrollment experience and passkey rollout have shown that users configuring two or more forms of 2FA are nearly 50% more likely to maintain secure access without becoming locked out, enhancing user experience across the board. GitHub’s investment in 2FA onboarding workflows and design enhancements has also led to a one-third reduction in 2FA-related support tickets. While the primary goal of the 2FA initiative was to secure GitHub’s own platform, its broader impact on the software supply chain has prompted other organizations to adopt similar security measures. GitHub continues to refine its strategies to encourage more widespread use of 2FA, improve user experience through session and token binding, and promote the adoption of secure authenticators. As GitHub advances its security measures, the company hopes that more organizations will implement similar protections. As Hanley puts it, “Security that isn’t usable isn’t security at all,” underscoring the importance of accessible, effective security solutions in the tech industry.

Get comprehensive supply chain report news updates at The Supply Chain Report. For international trade tools, see ADAMftd.com.

#CyberSecurityNews #SoftwareSupplyChainNews #SoftwareDevelopment #ITSecurity #GitHubNews

ShareTweet

Subscribe Our Newsletter

Share Your News

Whether it’s a groundbreaking achievement, a heartwarming tale, or an insightful perspective, we want to hear it. Share your news with us, and let’s amplify your voice in the digital symphony of stories.

Submit

A man is riding a bike on a hill.

The Supply Chain Report is your essential daily news website, serving as a trusted source for comprehensive coverage of the complex and ever-evolving global supply chain dynamics. Our expert team delves into the intricacies of international trade, manufacturing, logistics, importing, exporting, and supply chain management; providing in-depth analysis and up-to-date news on the latest trends, disruptions, and technological advancements affecting industries worldwide. From detailed reports on international trade through to insights into procurement strategies and inventory management, we offer valuable content that helps professionals stay informed and make knowledgeable decisions in a fast-paced market.

Each day, we bring you cutting-edge news and expert commentary that dissect significant international trade and supply chain issues Our coverage spans a wide array of sectors including manufacturing, retail, healthcare, food, consumer goods, and technology, ensuring that no matter your field, you have the strategic information needed to navigate the challenges and opportunities of today’s supply chain landscape. By synthesizing complex data and presenting actionable insights, The Supply Chain Report empowers business leaders, policymakers, and logistics professionals to optimize their operations and drive forward with confidence in an interconnected world.

Connect With Us

  • About
  • Events
  • Privacy Policy
  • Contact Us

© 2024 International Centre for Trade Transparency Limited. Incorporated in the United Kingdom.

No Result
View All Result
  • Home
  • Industry
    • Supply Chain
    • Logistics & Transportation
    • Importing & Exporting
    • Manufacturing
    • Warehousing & Distribution
  • Compliance
    • Supply Chain Transparency
    • Anti-Money Laundering (AML)
    • Know Your Customer (KYC)
    • Risk Management
    • Export Controls
    • Sanctions
  • Global Trade
    • Market Trends
    • Economic Indicators
    • Sourcing
    • Trade Policies
    • International Relations
    • Trade Agreements
    • Tariffs & Duties
    • Import/Export Statistics
  • Luxury Goods
  • Industry
    • Blockchain in Supply Chain
    • Importing & Exporting
    • Automation & Robotics
    • Artificial Intelligence in Trade
    • Data & Analytics
  • Sustainability & Ethics
    • Green Supply Chains
    • Sustainable Logistics
    • Ethical Sourcing
    • Corporate Social Responsibility
    • Environmental Policies
  • Security & Risk
    • Cybersecurity in Trade
    • Fraud & Scams
    • Risk Mitigation
    • Security Protocols
    • Data Protection
  • ITC News
    • ITC Featured Members
    • ITC Business Councils Highlights
  • Events
    • Upcoming Conferences
    • Upcoming FREE Educational Webinars

© 2024 International Centre for Trade Transparency Limited. Incorporated in the United Kingdom.