GitHub Action supply chain attack exposed secrets in 218 repos
The compromise of GitHub Action tj-actions/changed-files has impacted only a small percentage of the 23,000 projects using it ...
Fake security warning: Fraudsters try to hijack Github accounts
Security researchers have reported attempted attacks on around 12,000 Github repositories. Attackers want to gain full ...
Security Boulevard14d
GitGuardian Is Now The Overall Most Installed GitHub Marketplace App
We are thrilled to announce that the GitGuardian App has become the most installed application on GitHub's Marketplace. We ...
As nation-state hacking becomes 'more in your face,' are supply chains secure?
"Nation-state hacking has become more in your face," says Cleveland – who now works for network intel infosec outfit ExtraHop ...
TechSpot24d
Chatbots are surfacing data from GitHub repositories that are set to private
Popular chatbot services like Copilot and ChatGPT could theoretically be exploited to access GitHub repositories that their owners have set to private. According to Israeli security firm Lasso ...
Opinion
Firefox users are furious about Mozilla's new data sharing fiasco, and I'm one of them
The company behind Firefox, Mozilla, has this week made changes to its data sharing policy and, in turn, infuriated its users.
Bluesky is weighing a proposal that gives users consent over how their data is used for AI
Speaking at the SXSW conference in Austin on Monday, Bluesky CEO Jay Graber said the social network has been working on a ...
Microsoft: nearly one million devices hit by malware spread through ads on illegal streaming websites
Microsoft writes that its threat analysis team detected a large-scale malvertising campaign that impacted nearly one million devices globally in December 2024.
Microsoft is exploring a way to credit contributors to AI training data
According to a job listing, Microsoft is launching a project to estimate the influence of specific training data on the media ...
YouTubers targeted by blackmail campaign to promote malware on their channels
Cybercriminals have been targeting YouTubers with fake copyright claims, threatening them into distributing malware through ...
Modders do what AMD can't (or won't) by adding FSR 4 support to more games
It's a very similar scenario in this case - gamers spend hard-earned money to acquire new hardware, and if you can't even use ...
The Register on MSN14d
Microsoft admits GitHub hosted malware that infected almost a million devices
Also, phone cleaner apps are a data-sucking scam, Singapore considering the literal rod for scammers, and more Infosec in Brief Microsoft has spotted a malvertising campaign that downloaded nastyware ...