Krebs on Security

Lawmakers Demand Answers as CISA Tries to Contain Data Leak

Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor ...
The Hacker News

GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

GitHub on Wednesday officially confirmed that the breach of its internal repositories was the result of a compromise of an employee device involving a poisoned version of the Nx Console Microsoft ...
Forbes

GitHub Says 3,800 Repositories Breached—TeamPCP Hackers Demand $50,000

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. GitHub confirms 3,800 repositories breached. GitHub, the cloud-based hosting service used by ...
Bleeping Computer

GitHub confirms breach of 3,800 repos via malicious VSCode extension

Update May 21: GitHub has now linked this breach to the TanStack npm supply-chain attack and says the employee installed a malicious version of the Nx Console extension. GitHub has confirmed that ...
SecurityWeek

GitHub Confirms Hack Impacting 3,800 Internal Repositories

The TeamPCP hacking group accessed the repositories after a GitHub employee installed a poisoned VS Code extension. Microsoft-owned code-hosting platform GitHub on Wednesday morning confirmed that ...
CoinTelegraph

GitHub investigates unauthorized access to internal repositories

GitHub said the activity involved the exfiltration of about 3,800 internal repositories, and it removed the malicious code extension. GitHub said on Wednesday it is investigating unauthorized access ...
Bleeping Computer

Checkmarx confirms LAPSUS$ hackers leaked its stolen GitHub data

Application security company Checkmarx has confirmed that the LAPSUS$ threat group leaked data stolen from its private GitHub repository. Although the investigation is ongoing, Checkmarx believes that ...
The Hacker News

Checkmarx Confirms GitHub Repository Data Posted on Dark Web After March 23 Attack

Checkmarx has disclosed that its ongoing investigation tied to the supply chain security incident has revealed that a cybercriminal group published data related to the company on the dark web. "Based ...
clickondetroit.com

Ecorse woman warns of missing dog AI scam after losing $200 to fake finder

ECORSE, Mich. – An Ecorse woman is warning other pet owners about a scam she says cost her nearly $200 as she desperately searched for her missing dog. After her dog, Coco, slipped through a fence and ...
InfoQ

GitHub Copilot CLI Reaches General Availability

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...
winbuzzer.com

AI Coding: GitHub Hit by Outages as AI Agents Flood Platform

AI coding agents are generating so much traffic on GitHub that the Microsoft-owned platform logged five incidents in the first two days of April, including resource exhaustion from Copilot agent ...