Security researchers spot new phishing campaign targeting GitHub users A fake "security alert" GitHub account was notifying users of suspicious logins The links in the notification all point to a ...
In a new phishing campaign, GitHub developers are being targeted with fake “Security Alerts” where they are prompted to ...
Security researchers have reported attempted attacks on around 12,000 Github repositories. Attackers want to gain full ...
More details have come to light on the recent supply chain attack targeting GitHub Actions, including its root cause.
StepSecurity disclosed a compromise of the popular GitHub Action tj-actions/changed-files, which works to detect file changes ...
A widespread phishing campaign has targeted nearly 12,000 GitHub repositories with fake "Security Alert" issues, tricking developers into authorizing a malicious OAuth app that grants attackers full ...
A popular tool for automated software updates was compromised via GitHub A piece of malicious code was added, exposing user ...
Researchers have determined that Coinbase was the primary target in a recent GitHub Actions cascading supply chain attack ...
Researchers say compromised tool in the GitHub CI/CD environment stole credentials; infosec leaders need to act immediately.
The GitHub Action supply chain compromise that threatened the security of more than 23,000 repositories appears to be linked ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback