SecurityWeek

GitHub Confirms Hack Impacting 3,800 Internal Repositories

GitHub has confirmed that roughly 3,800 internal repositories were hacked after an employee installed an infected VS Code ...
SecurityWeek

SailPoint Discloses GitHub Repository Hack

SailPoint notified the SEC that hackers exploited a vulnerability in a third-party application to access some of its GitHub ...

Trellix confirms data breach after hack of 'a portion' of its source code

Key details are still missing, but Trellix says it found no evidence of source code release or distribution process being affected.
Bleeping Computer

Fake LDAPNightmware exploit on GitHub spreads infostealer malware

A deceptive proof-of-concept (PoC) exploit for CVE-2024-49113 (aka "LDAPNightmare") on GitHub infects users with infostealer malware that exfiltrates sensitive data to an external FTP server. The ...
Infosecurity Magazine

Malicious Hugging Face Repository Typosquats OpenAI

Security researchers have uncovered covert infostealer malware hidden in one of the top-ranking repositories on Hugging Face, ...
OSTechNix

Rocky Linux Launched an Emergency, Opt-in Security Repository to Fix Critical Vulnerabilities

Rocky Linux team introduced an optional, opt-in Security Repository to provide urgent security hot-fixes for critical kernel ...