Cybernews

Hackers hijack Microsoft packages to steal developer logins

The malware used in the attack was dubbed “Miasma” and is described as a self-replicating worm designed to harvest login ...

GitHub says hackers stole data from thousands of internal repositories

The code hosting giant GitHub said it was investigating a breach, but said there was no evidence of customer data theft.
Opinion
Morning Overview on MSNOpinion

Hackers just walked off with 3,800 of GitHub’s internal code repositories — smuggled out by a single poisoned plugin a GitHub developer trusted

Somewhere inside GitHub, a developer installed a Visual Studio Code extension. It looked like any other productivity plugin in Microsoft’s marketplace. It wasn’t. That single installation gave ...
PC Magazine

Hacker Pwns Programmer, Infects Widely Used Software With Malware

A hacker has managed to infect over a dozen widely used software packages with a crypto-looting malware after successfully phishing the programmer responsible for maintaining them. This morning, the ...

CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks

Cybercriminals used the Glassworm botnet to infect open source software projects with malware, and in turn hack the developers and companies that use that software.
PCMag on MSN

Canvas Developer Indicates That It Paid Hackers to Delete Stolen Data

Instructure's CEO admits it reached an 'agreement' with the ShinyHunters gang to end the extortion threat. The company is now facing class-action lawsuits and a Congressional inquiry.