A TeamPCP copycat was just spotted hitting thousands of GitHub repos with an infostealer.

Microsoft urged coordinated disclosure after three Windows zero-days were actively exploited, increasing customer security ...

GitHub is battling outages, security issues, and a talent exodus. is a senior correspondent and author of Notepad, who has ...

GitHub, the world's biggest code repository and DevOps platform, fell victim to a malicious Visual Studio Code (VS Code) ...

GitHub's user base has swelled under Microsoft's ownership, but the software repository has fallen behind newer rivals in the ...

The code hosting giant GitHub said it was investigating a breach but said there was no evidence of customer data theft.

Packagist packages hid malicious package.json scripts, enabling Linux binary execution during installs and workflows.

Introduction GitHub is the largest platform for software development and version control, enabling millions of developers to collaborate and share code.

GitHub is investigating a breach of its internal repositories after the TeamPCP hacker group claimed to have accessed ...

GitHub has confirmed that roughly 3,800 internal repositories were breached after one of its employees installed a malicious ...

The Megalodon supply chain attack poisoned over 5,500 GitHub repositories via automated commits injecting GitHub Actions workflows.

A GitHub employee has unwittingly allowed 3,800 internal repositories to be breached after a device compromise with a ...