Memeburn

Hackers Steal 3,800 GitHub Repos Through Fake VS Code Extension

GitHub says hackers stole about 3,800 internal repos after a poisoned VS Code extension hit an employee device ...
Dark Reading

Why Attackers Target GitHub, and How You Can Secure It

Last week Okta announced a security breach that involved an attacker gaining access to its source code hosted in GitHub. That's just the latest example in a long string of attacks gaining access to ...

GitHub disables Microsoft repos pushing password-stealing malware

Microsoft removed 73 repositories across its Azure, microsoft, Azure-Samples, and MicrosoftDocs organizations on GitHub, ...

This AI-coded malware apparently leaked its own GitHub private token

Whoopsie.
Dark Reading

North Korean Cyberspies Target GitHub Developers

The North Korean state-sponsored Lazarus advanced persistent threat (APT) group is back with yet another impersonation scam, this time posing as developers or recruiters with legitimate GitHub or ...

GitHub announces npm security changes to tackle supply-chain attacks

GitHub has announced that npm v12, expected next month, will introduce several security-focused changes aimed at blocking ...
The Hacker News

Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories

A flaw in Anthropic’s Claude Code GitHub Action allowed a malicious GitHub issue from a bot actor to trigger workflows and ...
Indiatimes

Microsoft wants to overhaul GitHub and on CEO Satya Nadella's target are…

Microsoft is on a mission to reinvent GitHub as a leading hub for AI development, directly challenging emerging competitors like Cursor and Claude Code. With a noticeable dip in developer engagement, ...