News
Investigations into the Nx "s1ngularity" NPM supply chain attack have unveiled a massive fallout, with thousands of account ...
Was GitHub's removal of password based authentication a security overstep? If it makes it harder for developers to get started with Git and GitHub, it was.
The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...
Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...
Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in ...
On August 26, 2025, Nx, the popular build platform with millions of weekly downloads, was compromised with ...
Unit 42 said it found open source projects from the likes of Google, Microsoft, and AWS, leaking GitHub authentication tokens through GitHub Actions artifacts in CI/CD workflows.
GitHub revealed details tied to last week’s incident where hackers, using stolen OAuth tokens, downloaded data from private repositories.
GitHub GitHub also provides links to help those looking to install it and urged anyone who hasn't already enabled two-factor authentication to do so through the account settings platform.
GitHub is urging its base of users to enable two-factor authentication as the platform shakes up how it protects accounts from compromise.
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback