IPWatchdog

Your Developers Could Be Publicly Disclosing Source Code By Using Third-Party Code Repositories

“It is important to keep in mind that courts have found that the mere intent to keep the document confidential is insufficient.” Recently, I met with a potential client to discuss key points that ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...

OpenAI reportedly developing internal code repository following GitHub outages

OpenAI reportedly developing internal code repository following GitHub outages ...
Tom's Hardware on MSN

Invisible malicious code attacks 151 GitHub repos and VS Code

The technique exploits Unicode Private Use Area characters, which render as zero-width whitespace in virtually every code ...
SiliconANGLE

Vulnerability in Azure App Service exposed hundreds of source code repositories

A vulnerability in Microsoft Corp.’s Azure App Service has been found to expose hundreds of source code repositories. Discovered by security researchers at Wiz Inc. and detailed Dec. 21, the ...
SiliconANGLE

Okta’s code repositories reportedly breached in cyberattack

Okta Inc. has experienced a data breach in which hackers accessed some of its source code repositories, BleepingComputer reported today. Nasdaq-listed Okta provides an identity management platform ...
Bleeping Computer

Slack's private GitHub code repositories stolen over holidays

Slack suffered a security incident over the holidays affecting some of its private GitHub code repositories. The immensely popular Salesforce-owned IM app is used by an estimated 18 million users at ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.