News
Cybercriminals exploit YouTube and GitHub to distribute crypto malware through hijacked accounts, fake repositories and malicious links disguised as legitimate content.
GitHub Actions has been abused by attackers to mine cryptocurrency using GitHub's servers, automatically.The particular attack adds malicious GitHub Actions code to repositories forked from ...
Main target of the takedown was the youtube-dl project, a Python library that had amassed more than 72k stars on GitHub and was used in many YouTube video ripping tools and services.
GitHub has reinstated today the youtube-dl open-source project, a Python library that lets users download the source audio and video files behind YouTube videos. GitHub, a code-hosting repository ...
Multiple high-profile open-source projects, including those from Google, Microsoft, AWS, and Red Hat, were found to leak GitHub authentication tokens through GitHub Actions artifacts in CI/CD ...
Both Azure DevOps and GitHub have their own automation and CI/CD tools — Azure Pipelines and GitHub Actions, respectively. These two tools both support hosted agents for public and private projects.
Researchers say compromised tool in the GitHub CI/CD environment stole credentials; infosec leaders need to act immediately.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback