Microsoft GitHub hack hit open-source AI tools, exposing developer passwords and cloud credentials. Here’s why SA tech teams ...

A Chinese-linked cyberespionage group has pulled off a classic software supply-chain ambush, compromising a popular open-source coding tool and turning trusted updates into a stealthy delivery system ...

Hackers claim to be selling internal Target source code after posting samples online. The data allegedly includes developer files and system tools of a US retailer. This raises concerns about ...

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.

Update, Jan 13th, 2026: Multiple Target employees have now confirmed in our follow-up report the authenticity of leaked source code sample set and shared internal announcements regarding an access ...

Use left and right arrow keys to seek audio. Arion Kurtaj, a British cybercriminal who was a central member in the hacking group known as Lapsus$, which performed several high-profile cyberattacks ...

A quiet compromise of a popular open-source coding editor has turned into one of the most unsettling software supply-chain stories of the year. Attackers silently hijacked the infrastructure behind ...

A version of the AI coding tool in Anthropic's npm registry included a source map file, which leads to the full proprietary source code. An Anthropic employee accidentally exposed the entire ...

The attack on the Trellix source code repository disclosed last week has been claimed by the RansomHouse threat group, which leaked a small set of images as proof of the intrusion. Yesterday, the ...

A decision by NHS England to withdraw open-source code created with UK taxpayer funds because of the risk posed by computer-hacking AI models is attracting growing backlash. Last month, Mythos, an AI ...

Microsoft shut down dozens of GitHub code repositories for Azure and AI coding tools after a reported hack.