Malicious code disguised as Dependabot contributions hits hundreds of GitHub repositories.
September 27, 2023
Another day, another data security incident at Microsoft.
September 18, 2023
Twitter had to file a DMCA request after its source code was found on GitHub.
March 27, 2023
Checkmarx security researchers have warned about an emerging new supply chain attack tactic involving spoofed metadata commits to present malicious GitHub repositories…
July 17, 2022
The warning comes days after three rogue packages, okhsa, klow, and klown discovered by DevSecOps firm Sonatype, were removed from the NPM repository.
October 23, 2021
If you are reading this, thinking about your personal data or even secrets, you may have bigger problems than you can solve.
July 11, 2021
To prevent account takeover in SSH Git operations, GitHub has now added support for security keys.
May 11, 2021
So far, the phishing scam has targeted users in 80 countries.
April 21, 2021
While white-hat hackers get paid for reporting flaws this particular researcher was reported to the police after responsibly disclosing a data leak.
March 27, 2021