A cybersecurity company trusted to protect some of the largest networks in the country has itself been breached. Trellix, the endpoint detection and response (EDR) vendor born from the merger of ...

Proofpoint says UNK_DeadDrop sent 250+ phishing emails to nearly 100 firms, using GitHub and VS Code lures to steal credentials and wallet data.

Microsoft shut down dozens of GitHub code repositories for Azure and AI coding tools after a reported hack.

The code hosting giant GitHub said it was investigating a breach, but said there was no evidence of customer data theft.

NHS England is pulling its open-source software from the internet because of fears around computer-hacking AI models like Mythos. Opposition is growing among those who say the move is bad for ...

Privately-held, extended detection and response firm Trellix disclosed over the weekend that hackers found their way to its source-code repository. See Also: Know Thy Enemy: Threats to Cyber ...

Microsoft has removed dozens of GitHub repositories after a malware scare. The affected projects may have exposed users to password and credential theft.

A version of the AI coding tool in Anthropic's npm registry included a source map file, which leads to the full proprietary source code. An Anthropic employee accidentally exposed the entire ...

Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the researchers who discovered the vulnerability and reported it to Microsoft ...

A maximum severity vulnerability in the FreeScout helpdesk platform allows hackers to achieve remote code execution without any user interaction or authentication. The flaw is tracked as ...

Hackers claim Novo Nordisk rejected a $25 million ransom demand and are now exploring private sales of 1.3TB of allegedly stolen clinical, research, and company data.