资讯

Security Boulevard1 天
Remain code-compliant in a regulated, AI-powered world
Discover practical strategies to maintain code compliance in AI-driven development, from SAST/DAST to AppSec tools and compliance training. The post Remain code-compliant in a regulated, AI-powered ...
The Hacker News3 天
200+ Trojanized GitHub Repositories Found in Campaign Targeting Gamers and Developers
A new cybersecurity campaign has exposed 67 trojanized GitHub repositories, targeting gamers and developers with malicious ...
CSO Online3 天
GitHub hit by a sophisticated malware campaign as ‘Banana Squad’ mimics popular repos
Attackers use typo-squatting, obfuscation, and fake accounts to slip Python-based malware into open-source projects, raising ...
The Hacker News4 天
Water Curse Employs 76 GitHub Accounts to Deliver Multi-Stage Malware Campaign
Water Curse has been described as a financially motivated threat actor that's driven by credential theft, session hijacking, ...
Jaw-dropping security flaws found in open source code could allow hackers to spirit away ...
Sysdig exposed how a trusted GitHub feature can silently hand control to attackers pull_request_target isn’t just risky, it’s ...