An extortion group calling itself the Crimson Collective claims to have breached Red Hat's private GitHub repositories, stealing nearly 570GB of compressed data across 28,000 internal projects.

Microsoft-owned repository GitHub has responded to recent node package manager (npm) attacks such as the Shai-Hulud self-replicating worm, attempting to restore trust in the open-source ecosystem.

Ami Luttwak, CTO of Wiz, breaks down how AI is changing cybersecurity, why startups shouldn't write a single line of code before thinking about security, and opportunities for upstarts in the industry ...

CERT-In, India's cybersecurity agency, warns startups and IT firms about a Dune-inspired malware, 'Shai-Hulud', targeting the npm ecosystem.

In light of recent cyberattacks and growing security concerns, GitHub is taking immediate and direct action to secure the open-source software supply chain.

Zapier reports on vibe coding, highlighting best practices like planning, using product requirements documents, and testing often for effective AI-driven development.

CISA and GitHub have responded to a widespread supply chain attack involving the Shai-Hulud worm compromising over 500 NPM packages.

Following a number of recent high-profile attacks and hacking attempts, GitHub has decided to make substantial changes to the security of its platform. In a blog post, GitHub detailed changes to ...

Popular code repository GitHub is taking action against hackers targeting popular JavaScript code packages to spread malware.

In the light of recent supply chain attacks targeting the NPM ecosystem, GitHub will implement tighter authentication and publishing rules.

GitHub has unveiled a comprehensive plan to improve npm (Node Package Manager) security. The measures are a direct response to the major npm attack in mid-September, in which self-replicating malware ...

GitHub rolled out several updates this week aimed at developer collaboration, open source security and enterprise billing.