GitHub is an extremely popular platform in the open source world, and as such is under a constant barrage of attacks. This ...

The use of GitHub gave the malware-as-a-service (MaaS) a reliable and easy-to-use platform that’s greenlit in many enterprise ...

Malicious GitHub repositories used by threat actors to host Amadey payloads and steal data, impacting targeted entities.

A new malware distribution campaign leveraging public GitHub repositories as a delivery infrastructure for various malicious ...

npm packages hit by phishing-based supply chain attack, exposing developers to malware and remote access threats.

Security experts have warned of an emerging new cyber threat involving fake VPN software hosted on GitHub. A report from Cyfirma outlines how malware disguises itself as a “Free VPN for PC” and lures ...

Popular JavaScript libraries eslint-config-prettier and eslint-plugin-prettier were hijacked this week and turned into ...

Increasing reliance on open-source repositories calls for much higher-level vigilance to counter deceptive tactics.

Arch Linux has pulled three malicious packages uploaded to the Arch User Repository (AUR) were used to install the CHAOS remote access trojan (RAT) on Linux devices.

Security researchers are warning about an ongoing campaign leveraging Microsoft Teams calls to deploy a piece of malware ...

Scammers have posed as AI and Web3 startups, spreading crypto-stealing malware through convincing fake websites and social ...

Researchers uncover stealth malware using DNS records to bypass detection tools and hijack systems through less monitored ...