A high-severity vulnerability in GitHub Enterprise Server could have allowed remote attackers to execute arbitrary code.

A new cybersecurity campaign has exposed 67 trojanized GitHub repositories, targeting gamers and developers with malicious ...

Attackers use typo-squatting, obfuscation, and fake accounts to slip Python-based malware into open-source projects, raising ...

Many open-source repositories contain privileged GitHub Actions workflows that execute untrusted code and can be triggered by ...

Discovered by ReversingLabs, the campaign reflects a shift in open-source software supply chain attacks. While overall ...

A threat campaign has been targeting software developers through GitHub repos that, at first glance, look completely ...

GitHub announced an update to its Command Line Interface (CLI), introducing enhanced support for triangular workflows - a ...

Github repositories are being infected with malware Trusted repositories can bypass secure web gateways Github comments are also being used to hide malicious files In a new phishing campaign ...

Water Curse has been described as a financially motivated threat actor that's driven by credential theft, session hijacking, ...

Accelerate government innovation with AI. Three powerful AI tools. One integrated platform.” These words, fleetingly legible ...

Discover how Gitingest MCP analyses GitHub repositories, creating actionable insights. Simplify codebases, improve teamwork ...

Trend Micro and ReversingLabs uncovered over 100 GitHub accounts distributing malware embedded in open source hacking tools.