GitHub

3 min read

• Aikido Security
• Docker
• GitHub
• incident response
• Microsoft
• npm
• open source software
• supply chain attacks
• Threats
• Visual Studio

GitHub says internal repositories were taken in poisoned VS Code extension attack

Cyber Scoop May 20, 2026

GitHub says internal repositories were taken in poisoned VS...

Read More

5 min read

• AWS
• Bennie Thompson
• Congress
• Cybersecurity and Infrastructure Security Agency (CISA)
• Delia Ramirez
• Department of Homeland Security (DHS)
• GitGuardian
• GitHub
• Government
• House Homeland Security Committee
• Infoblox
• maggie hassan
• Nick Andersen
• Nightwing
• Rubrik
• Technology
• watchTowr

CISA credential leak raises alarms, and Capitol Hill demands answers

Cyber Scoop May 19, 2026

CISA credential leak raises alarms, and Capitol Hill demands...

Read More

3 min read

• application security
• CI/CD
• Cybersecurity
• GitHub
• Malware
• mini shai hulud
• open source
• Research
• SSH
• worm

Mini Shai-Hulud returns, compromising hundreds of npm packages

Cyber Scoop May 19, 2026

Mini Shai-Hulud returns, compromising hundreds of npm packages |...

Read More

5 min read

• AI
• Anthropic
• artificial intelligence (AI)
• bug bounty
• Cybersecurity
• Daybreak
• GitHub
• Mythos
• OpenAI
• Research
• software
• software security
• Technology
• vulnerabilities

AI might cut false positives, but it won’t stop the slop 

Cyber Scoop May 18, 2026

AI might cut false positives, but it won’t stop...

Read More

4 min read

• Aikido Security
• Cybersecurity
• GitHub
• npm
• open source
• open source software
• Research
• Sola Security
• supply chain attacks
• supply chain security
• Tanium
• Threats
• Wiz

Shai-Hulud worm returns stronger and more automated than ever before

Cyber Scoop November 24, 2025

Shai-Hulud worm returns stronger and more automated than ever...

Read More

4 min read

• Amazon Web Services (AWS)
• cybercrime
• Cybersecurity
• Darktrace
• Forrester
• GitHub
• Google Threat Intelligence Group
• hacking
• Mandiant
• OAuth
• Research
• Salesforce
• Salesloft
• Salesloft Drift
• Technology
• Threats

Salesloft Drift security incident started with undetected GitHub access

Cyber Scoop September 8, 2025

Salesloft Drift security incident started with undetected GitHub access...

Read More

4 min read

• Chainguard
• Commentary
• Cybersecurity
• Cybersecurity and Infrastructure Security Agency (CISA)
• GitHub
• Linux
• NIST
• op-ed
• open source
• Policy
• software bill of materials
• Technology Modernization Fund

Unverified code is the next national security threat

Cyber Scoop June 9, 2025

Unverified code is the next national security threat |...

Read More

3 min read

• cryptocurrency
• cybercrime
• Cybersecurity
• GitHub
• Lazarus Group
• Malware
• North Korea
• npm
• Research
• Socket
• software security
• Threats

Lazarus Group deceives developers with 6 new malicious npm packages

Cyber Scoop March 12, 2025

Lazarus Group deceives developers with 6 new malicious npm...

Read More

3 min read

• credential theft
• cybercrime
• GitHub
• Research
• sysdig
• Threats

Hackers find 15,000 credentials by scanning for git configuration

Cyber Scoop October 30, 2024

Hackers find 15,000 credentials by scanning for git configuration...

Read More

3 min read

• Cybersecurity
• GitHub
• Research
• vulnerabilities
• vulnerability

GitHub patches critical vulnerability in its Enterprise Servers

Cyber Scoop October 16, 2024

GitHub patches critical vulnerability in its Enterprise Servers |...

Read More