The Hacker News

Miasma Worm Hits 73 Microsoft GitHub Repositories in Major Supply Chain Attack

Miasma hit 73 Microsoft repos across four GitHub orgs, forcing access disablement and exposing open-source trust risks.
Redmondmag.com

Supply Chain Attack Hits Microsoft GitHub Repos, AI Coding Tools

GitHub disabled 73 Microsoft repositories on June 5 after a malicious commit landed in an Azure project, in what researchers described as a supply chain attack aimed at developer workstations and AI ...
Dark Reading

Millions of Malicious Repositories Flood GitHub

Cyberattackers in just the last few months have registered more than 100,000 — but by some estimates more than a million — malicious copycat repositories on GitHub. The "repo confusion" scheme is ...

GitHub says hackers stole data from thousands of internal repositories

The code hosting giant GitHub said it was investigating a breach but said there was no evidence of customer data theft.
TheServerSide

How to fork a Git repository

Community driven content discussing all aspects of software development from DevOps to design patterns. There is no fork command in Git. This comes as a surprise to many, as a repository fork is a ...
CSOonline

Critical GitHub RCE bug exposed millions of repositories

The now‑patched flaw allowed authenticated users to execute arbitrary code via crafted git push requests, affecting GitHub.com and Enterprise Server. A critical remote code execution (RCE) ...
TechRadar

Thousands of GitHub repositories exposed via Microsoft Copilot

Copilot has access to private GitHub repositories, researchers found The repositories were public at some point, and Bing cached them The caching behavior is "acceptable" says Microsoft Thousands of ...