InfoWorld

Possible software supply chain attack through AWS CodeBuild service blunted

Wiz researchers investigated and found the core of the flaw, a threat actor ID bypass due to unanchored regexes, and notified ...
ZDNet

Git repository vulnerability leads to remote code execution attacks

A severe vulnerability has been patched in Git software source code to prevent remote code execution attacks being launched at users. The bug, which is industry-wide, was disclosed on Tuesday. Git, ...

Target's dev server offline after hackers claim to steal source code

Hackers are claiming to be selling internal source code belonging to Target Corporation, after publishing what appears to be ...
Threat Post

Code Reuse a Peril for Secure Software Development

Open source and third-party software bugs haunt even the best developers’ projects, despite the industry’s best efforts to avoid them. The amount of insecure software tied to reused third-party ...
PC Gamer

GitHub is under automated attack by millions of cloned repositories filled with malicious code

Thanks to a combination of sophisticated methodology and social engineering, this particular attack seems to be very difficult to stop. When you purchase through links on our site, we may earn an ...
VentureBeat

GitHub introduces Protected Branches to prevent force pushes to certain parts of code repos

Source code repository software company GitHub today said that in the coming weeks it will roll out Protected Branches, a new feature that should help companies cut down on catastrophes stemming from ...