The Register on MSN13d
Microsoft admits GitHub hosted malware that infected almost a million devices
Also, phone cleaner apps are a data-sucking scam, Singapore considering the literal rod for scammers, and more Infosec in ...
Coinbase was primary target of recent GitHub Actions breaches
Researchers have determined that Coinbase was the primary target in a recent GitHub Actions cascading supply chain attack ...
Hundreds of GitHub repositories hijacked to trick users into downloading malware
Cybersecurity researchers Kaspersky have iscovered a longstanding, widespread criminal campaign targeting software developers with information-stealing malware.
CSO Online5d
GitHub accounts targeted with fake security alerts
In a new phishing campaign, GitHub developers are being targeted with fake “Security Alerts” where they are prompted to ...
Thousands of exposed GitHub repositories, now private, can still be accessed through Copilot
Lasso extracted a list of repositories that were public at any point in 2024 and identified the repositories that had since been deleted or set to private. Using Bing’s caching mechanism, the company ...
GitHub Action compromise linked to previously undisclosed attack
The GitHub Action supply chain compromise that threatened the security of more than 23,000 repositories appears to be linked ...
The Register on MSN5d
GitHub supply chain attack spills secrets from 23,000 projects
Large organizations among those cleaning up the mess It's not such a happy Monday for defenders wiping the sleep from their ...
Virtualization Review9d
Rubrik Extends Protection for GitHub, Wracked by Cybersecurity Attacks
Rubrik announced a raft of cybersecurity features, including protection for GitHub, which has become a prime target for ...
Copilot exposes private GitHub pages, some removed by Microsoft
Microsoft’s Copilot AI assistant is exposing the contents of more than 20,000 private GitHub repositories from companies including Google, Intel, Huawei, PayPal, IBM, Tencent and, ironically, ...