GitHub

eSecurity Planet content and product recommendations are editorially independent. We may make money when…

A critical misconfiguration in Amazon Web Services (AWS) CodeBuild could have allowed complete takeover…

Apart from dumping the exploit code, the repositories included detailed sections with overviews of…

In early 2025, security researchers uncovered a new malware family named Webrat. Initially, the…

Cybersecurity researchers are calling attention to a new campaign that’s leveraging GitHub-hosted Python repositories…

With that access, threat actors can “poke around” various repositories and workflows and look…

eSecurity Planet content and product recommendations are editorially independent. We may make money when…

Shai-Hulud first emerged in September, revealed by the discovery that dozens of npm libraries,…

A new Shai-Hulud supply chain attack has hit nearly 500 npm packages with a…

A malicious npm package named “@acitons/artifact” was found impersonating the legitimate “@actions/artifact” module, directly…