News

Hackers steal 3,325 secrets in GhostAction GitHub supply chain attack

A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, ...

Hackers find new way to hide malware in Ethereum smart contracts

Security researchers found malware packages using the Ethereum blockchain to conceal malicious commands on GitHub repos.

Hackers hide behind Tor in exposed Docker API breaches

A threat actor targeting exposed Docker APIs has updated its malicious tooling with more dangerous functionality that could ...

Coinbase’s preferred AI coding tool can be hijacked by new virus

Cybersecurity firm HiddenLayer says a new virus can infect popular AI tools, including one widely used at crypto exchange ...