GitHub is an extremely popular platform in the open source world, and as such is under a constant barrage of attacks. This ...

The use of GitHub gave the malware-as-a-service (MaaS) a reliable and easy-to-use platform that’s greenlit in many enterprise ...

Malicious GitHub repositories used by threat actors to host Amadey payloads and steal data, impacting targeted entities.

A new malware distribution campaign leveraging public GitHub repositories as a delivery infrastructure for various malicious ...

Security experts have warned of an emerging new cyber threat involving fake VPN software hosted on GitHub. A report from Cyfirma outlines how malware disguises itself as a “Free VPN for PC” and lures ...

Popular JavaScript libraries eslint-config-prettier and eslint-plugin-prettier were hijacked this week and turned into ...

Increasing reliance on open-source repositories calls for much higher-level vigilance to counter deceptive tactics.

Discover how AsyncRAT evolved from GitHub release to a widespread malware tool, spawning dangerous variants like DCRat and ...

Arch Linux has pulled three malicious packages uploaded to the Arch User Repository (AUR) were used to install the CHAOS remote access trojan (RAT) on Linux devices.

Security researchers are warning about an ongoing campaign leveraging Microsoft Teams calls to deploy a piece of malware ...

Cybersecurity firm SlowMist has uncovered a fake GitHub repository masquerading as a Solana trading bot that secretly delivered obfuscated malware to steal users’ crypto wallet credentials.

Researchers uncover stealth malware using DNS records to bypass detection tools and hijack systems through less monitored ...