As if the Miasma situation weren't bad enough, now this weapon is spreading like wildfire. Someone open sourced the entire ...

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain ...

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.

GitHub says hackers stole about 3,800 internal repos after a poisoned VS Code extension hit an employee device ...

Security researchers say 5,500 GitHub repositories have been affected by the attack.

Microsoft shut down dozens of GitHub code repositories for Azure and AI coding tools after a reported hack.

Hackers infiltrated Microsoft's open-source projects on GitHub, embedding password-stealing malware into the code, prompting ...

Microsoft is exposed to a new security risk as hackers may have managed to place malware inside some of its open-source ...

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar information-stealing malware. Claude Code is a terminal-based AI agent from ...

Code sharing platform GitHub, which has over 150 million registered developers worldwide, announced on Wednesday that an unauthorised actor had gained access to its internal systems. A threat actor ...

Researchers say prompt injection attacks could manipulate AI coding agents to access sensitive credentials stored in software ...