The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

Dozens of npm libraries, including a color library with over 2 million downloads a week, have been replaced with novel ...

Cybercriminals are exploiting GitHub to spread credential-stealing malware through fake repositories, cybersecurity firm ...

A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, ...

With hackers abusing GitHub to perpetuate their attacks, Microsoft should use AI to clean up its industry-leading software-sharing platform. When you purchase through links on our site, we may earn an ...

Hackers are creating hundreds of fake GitHub projects aiming to dupe users into downloading crypto and credential-stealing ...

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.

August 2025 campaigns deliver kkRAT and Gh0st RAT variants via SEO poisoning, disabling antivirus to hijack crypto wallets.

Security investigators from Google said UNC6395 hackers spent several months running through Salesloft and Drift systems before launching a data breach campaign that some security researchers say has ...

Google-owned Mandiant, which began an investigation into the incident, said the threat actor, tracked as UNC6395, accessed ...

Hackers are embedding malware commands in Ethereum smart contracts, disguising them as ordinary blockchain traffic and ...

ReversingLabs' research identified the npm packages clortoolv2 and mimelib2, which used Ethereum smart contracts to hide ...