News

Security Boulevard7d
Threat actor Banana Squad exploits GitHub repos in new campaign
Trends in open-source software supply chain attacks – ones that exploit the public platforms developers rely on for software ...
The Hacker News6d
New Malware Campaign Uses Cloudflare Tunnels to Deliver RATs via Phishing Chains
Malware campaign abuses Cloudflare Tunnel and phishing lures to deliver in-memory RATs across multiple regions.
InfoWorld14h
Google unveils Gemini CLI for developers
Now in preview, Gemini CLI is an open-source AI agent that brings the capabilities of Google’s Gemini AI model into the ...
Infosecurity Magazine6d
Banana Squad’s Stealthy GitHub Malware Campaign Targets Devs
Discovered by ReversingLabs, the campaign reflects a shift in open-source software supply chain attacks. While overall ...
This new ChatGPT trick lets you download your Canvas work as a PDF in seconds - here's how
In an X post on Thursday, the company announced that Canvas users can now download text files as PDF, DOCX, or Markdown, ...
InfoWorld15d
What the AI coding assistants get right, and where they go wrong
ChatGPT, GitHub Copilot, Cursor, Windsurf, RooCode, and Claude Code all have their strengths, but no single assistant ticks ...
Why I'm switching to VS Code. Hint: It's all about AI tool integration
VS Code's AI integration tempted me away from PhpStorm, but getting it set up broke everything. Here's how I fixed it, what I ...
The Hacker News4d
200+ Trojanized GitHub Repositories Found in Campaign Targeting Gamers and Developers
A new cybersecurity campaign has exposed 67 trojanized GitHub repositories, targeting gamers and developers with malicious ...
Arabian Post on MSN17h
Privacy‐First Code Editing Gains Traction
Void, a Y Combinator‐backed, open‐source AI code editor, has entered beta testing, promising developers full control over ...
Infosecurity Magazine6d
North Korean Hackers Deploy Python-Based Trojan Targeting Crypto
A new Python-based remote access Trojan (RAT) known as PylangGhost is being deployed in cyber campaigns attributed to the ...
Developer Tech5d
Look right: Threat campaign fooling developers in GitHub repos
A threat campaign has been targeting software developers through GitHub repos that, at first glance, look completely ...
CSO Online7d
GitHub Actions attack renders even security-aware orgs vulnerable
Many open-source repositories contain privileged GitHub Actions workflows that execute untrusted code and can be triggered by ...