Security News

Free code repositories on the Microsoft-owned GitHub have been abused since at least mid-2017 to host phishing websites, according to researchers from Proofpoint. read more

Researchers have found that one of the most popular source code repositories in the world is still housing thousands of publicly accessible user credentials.

Researchers from Trend Micro have come across a new piece of malware that abuses GitHub and Slack for command and control (C&C) communications. read more

Panic, flee, cry – or just update Windows for fsck's sake A new malware strain tapped into GitHub posts and Slack channels to siphon precious data from infected Windows PCs, it is claimed.…

Researchers have uncovered a network of GitHub accounts containing backdoored versions of legitimate software.

GitHub is offering unlimited rewards for critical vulnerabilities - and has added "safe harbor" terms to its bug bounty program.

After paying out $250,000 in bug bounties in 2018, GitHub has decided to increase rewards and expand the scope of its bug bounty program. read more

Microsoft-owned GitHub informed developers on Thursday that they can easily ensure that the dependencies used by their applications are always secure and up to date through an integration of its...

The potency of DDoS attacks lies in the number of packets being sent rather than the relative bandwidth involved in the attack.

Developers around the world depend on open source components to build their software products. According to industry estimates, open source components account for 60-80% of the code base in modern...