YARMOUTH, Maine – It’s been a hard year for security at identity and access management company Okta, with its most recent data breach incident causing the company to lose its source code to threat ...

The attack on the Trellix source code repository disclosed last week has been claimed by the RansomHouse threat group, which ...

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...

New findings in the case of unauthorized access to Trellix source codes: The criminal gang RansomHouse claims responsibility ...

What happened?: Trellix disclosed that attackers accessed part of its internal source code, with RansomHouse claiming responsibility and releasing a sample. Why it matters: Source code exposure could ...

The Free Software Foundation Europe warns against switching NHS code repositories to private due to fears of AI vulnerability ...

The RansomHouse ransomware group has taken credit for the recent attack on the cybersecurity firm Trellix. The Trellix hack ...

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...

A new command line tool designed to make any open-source repository “agent-ready” is exposing a fresh security blind spot in ...

According to Microsoft, the decision to open source GitHub Copilot Chat stems from a growing demand for transparency in how AI-assisted developer tools work -- particularly around prompt engineering, ...

Attackers could inject prompts into a GitHub issue and take over the AI agent designed to automatically triage the issue.

NHS England has taken the drastic step of moving all its open source software into private storage, citing concerns that AI ...