GitHub adds AI-powered bug detection to expand security coverage

GitHub is adopting AI-based scanning for its Code Security tool to expand vulnerability detections beyond the CodeQL static ...
WinBuzzer

DarkSword iOS Exploit Leaks on GitHub, Threatens Millions

A government-grade iOS exploit kit called DarkSword has been leaked on GitHub, putting hundreds of millions of iPhones ...
TechBooky

GitHub Expands AI Security Detections Across More Languages

GitHub is adding AI-powered security detections to its Code Security offering, aiming to catch more vulnerabilities across a ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.
Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...

New ‘DarkSword’ Leak Puts Millions of iPhones at Risk After Initial Attack

A newer DarkSword exploit leak makes hacking outdated iPhones easier, exposing hundreds of millions of devices to risk.

A New DarkSword Version Just Leaked Online & Millions of iPhones Are Now at Risk

A new DarkSword version has leaked on GitHub, letting anyone hack older iPhones without expertise. Here's what you need to ...

iPhone exploit DarkSword has been released in the wild: How to protect yourself

DarkSword spyware has been posted in the wild. Credit: Cheng Xin/ DarkSword, the web-based hacker tool that can be used to ...
Dark Reading

GitHub 'OpenClaw Deployer' Repo Delivers Trojan Instead

An AI-assisted campaign is spreading more than 300 poisoned packages for diverse assets ranging from developer tools to game ...

This Argentine Billionaire’s Startup Vercel Is One Of Claude Code’s Go-To Web Hosting Tools

One of the most popular ways to view the Epstein Files, an interface called Jmail that mimics a Gmail inbox, is hosted on ...
TweakTown

Jailed Rockstar hacker hints at GTA 6 source code still being out there

TL;DR: Arion Kurtaj, a key Lapsus$ hacker behind major cyberattacks including the GTA 6 leak, revealed he received a smartphone while hospitalized. He accessed Rockstar's systems via compromised ...
InfoQ

GitHub Agentic Workflows Unleash AI-Driven Repository Automation

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Anurag Kale discusses the transition from ...