GitHub Purges 70+ Microsoft Repositories Following Miasma Worm Outbreak
GitHub took down over 70 Microsoft repositories in under two minutes to stop the Miasma worm, which targets cloud secrets via IDEs and AI coding tools.
Tag: Cloud Security
GitHub Nukes 70+ Microsoft Repos After Miasma Worm Breach Breaks CI/CD Pipelines
GitHub disabled over 70 Microsoft repositories in a rapid response to the Miasma worm, triggering widespread CI/CD failures for Azure developers.
CISA Left Secret GitHub Repo Public for Six Months, Leaking Passwords and AWS Keys
The US Cybersecurity and Infrastructure Security Agency (CISA) accidentally left a private repository public, exposing sensitive credentials and infrastructure keys.
Megalodon Campaign Poisons Over 5,500 GitHub Repositories in Massive CI/CD Attack
A sophisticated automated campaign dubbed 'Megalodon' has targeted thousands of GitHub repositories to steal cloud credentials and CI/CD secrets.
CISA Exposed Production Secrets in Public GitHub Repo for Six Months
The US Cybersecurity and Infrastructure Security Agency (CISA) left a public GitHub repository containing plain-text passwords and AWS keys open for six months.
Megalodon Campaign Poisons Over 5,500 GitHub Repositories in Massive CI/CD Attack
A sophisticated automated campaign dubbed 'Megalodon' has targeted thousands of GitHub repositories, stealing cloud credentials via poisoned CI/CD pipelines.
Megalodon Campaign Poisons Over 5,500 GitHub Repositories to Steal Cloud Credentials
A massive automated campaign dubbed Megalodon has targeted thousands of GitHub repositories, injecting malware designed to exfiltrate AWS, GCP, and Azure credentials.
Megalodon Malware Campaign Poisons Over 5,500 GitHub Repositories
A sophisticated supply chain attack dubbed 'Megalodon' has targeted thousands of GitHub repositories, stealing cloud credentials and CI/CD secrets.
CISA Under Fire After Contractor Leaks Agency Secrets on Public GitHub Repository
Lawmakers are questioning CISA's internal security after a contractor leaked AWS GovCloud keys and internal secrets on a public GitHub account.
CISA Contractor Leaked High-Privilege AWS GovCloud Keys in Public GitHub Repo
A contractor for CISA exposed highly privileged AWS GovCloud credentials and internal system passwords in a public GitHub repository, raising serious security concerns.