Dark Reading

Supply Chain Attacks Targeting GitHub Actions Increased in 2025

At this week's Black Hat Europe conference, two researchers urged developers to adopt a shared responsibility model for open ...

WebRAT malware spread via fake vulnerability exploits on GitHub

The WebRAT malware is now being distributed through GitHub repositories that claim to host proof-of-concept exploits for ...
Cryptopolitan on MSN

Polymarket copy traders warned of malicious private key-stealing code

Security-oriented researchers and companies have warned about a popular, open-source Polymarket copy trading bot hosted on ...

Hackers exploit unpatched Gogs zero-day to breach 700 servers

An unpatched zero-day vulnerability in Gogs, a popular self-hosted Git service, has enabled attackers to gain remote code ...
InfoWorld

GitHub Action Secrets aren’t secret anymore: exposed PATs now a direct path into cloud environments

Wiz has found threat actors exploiting GitHub tokens, giving them access to GitHub Action Secrets and, ultimately, cloud ...
Fudzilla

Intel bins its open-source Gaudi user-space code

Another self-inflicted wound for Intel’s AI accelerator ambitions Troubled Chipzilla has abandoned the open-source user-space ...

Anthropic launches enterprise ‘Agent Skills’ and opens the standard, challenging OpenAI in workplace AI

Anthropic releases its Agent Skills framework as an open standard, with Microsoft, OpenAI, Atlassian, and Figma already ...
HealthcareInfoSecurity

Zero Day: 700 Instances of Self-Hosted Git Service Exploited

An attacker has been exploiting a zero-day vulnerability in Gogs, an open-source and popular Git service that allows for self ...

India becoming world’s most important AI developer hub, says GitHub

Unlike ChatGPT’s explosive kick to the front door to grab the world’s attention, GenAI’s inroads into software development ...