Infosecurity-magazine.com

Millions Face RepoJacking Risk on GitHub Repositories

Security researchers have unveiled a new instance of repojacking that affects millions of GitHub repositories. According to an advisory published last week by Aqua Security Software, the discovered ...
The Hacker News

LastPass Warns of Fake Repositories Infecting macOS with Atomic Infostealer

Cybercriminals are using fake GitHub repositories to distribute Atomic Stealer malware disguised as trusted macOS apps like ...
CSOonline

Software projects face supply chain security risk due to insecure artifact downloads via GitHub Actions

Cybersecurity researchers found risks in the GitHub Actions platform that could enable attackers to inject malicious code into software projects and initiate a supply chain attack. The way build ...
Krebs on Security

Self-Replicating Worm Hits 180+ Software Packages

The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...

How GitHub Is Securing the Software Supply Chain

In light of recent cyberattacks and growing security concerns, GitHub is taking immediate and direct action to secure the ...