Mailing the story:
Assume your GitHub account is hacked, users with weak crypto keys told
GitHub has revoked an unknown number of cryptographic keys used to access accounts after a developer found they contained a catastrophic weakness that came to light some seven years ago.