Microsoft flagged a Mistral AI hack as a supply-chain attack that hid malware in a fake AI library on PyPI. Here's what ...
Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a vulnerability in the developers’ account workflow that gave access to its signing keys ...
TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...
An attacker poisoned 84 TanStack npm versions across 42 packages, stealing GitHub OIDC tokens and cloud keys while planting a ...
After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and ...
GitHub has confirmed that it is investigating unauthorized access to some of its internal repositories. The company shared ...
The 4th Linux kernel flaw this month can lead to stolen SSH host keys ...
A nine-year-old logic flaw in the Linux kernel's process trace (ptrace) path has been discovered that could let unprivileged ...
PamDOORa Linux backdoor abuses PAM modules for SSH persistence and credential theft, increasing Linux server compromise risks ...
The PCPJack worm targets cloud environments and vulnerable web applications to remove TeamPCP infections and steal ...
Linux and RDP have had performance and security issues for as long as I can remember and Apache Guacamole solves most of them ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results