Miasma hit 73 Microsoft repos across four GitHub orgs, forcing access disablement and exposing open-source trust risks.
GitHub disabled 73 Microsoft repos after the Miasma worm exploited previously compromised credentials to plant malware targeting AI coding agents.
A flaw in Anthropic’s Claude Code GitHub Action allowed a malicious GitHub issue from a bot actor to trigger workflows and ...
A flaw in Claude Code's GitHub Action let attackers bypass permission checks via fake bots and steal OIDC tokens through prompt injection.
From an enterprise governance perspective, this means visual AI edits are subject to the exact same continuous integration ...
Researchers say prompt injection attacks could manipulate AI coding agents to access sensitive credentials stored in software ...
GitHub said the activity involved the exfiltration of about 3,800 internal repositories, and it removed the malicious code extension. GitHub said on Wednesday it is investigating unauthorized access ...
Figma Make’s new code workflow points to a larger shift where AI is bringing design, development, and product teams closer ...
An archive of roughly 4,000 repositories is reportedly being offered for sale on the dark web, by threat actors known as ...
XDA Developers on MSN
A poisoned VS Code extension led to a GitHub breach, and Microsoft owns every link in the chain
Microsoft has had a VS Code extension for a long time, and it finally came back to bite them.
A researcher has disclosed details of a severe VS Code vulnerability that can be exploited to steal GitHub tokens and access ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results