Advertisement
CISA GitHub Repo Exposes Secrets & Credentials in Public View
CISA inadvertently exposed sensitive secrets and credentials within a publicly accessible GitHub repository. This incident highlights critical cloud security
CISA Contractor Leaked AWS GovCloud Keys on GitHub: Critical Exposure
A CISA contractor publicly exposed highly privileged AWS GovCloud and internal system credentials on GitHub, detailing CISA's software development. This leak poses a
Grafana GitHub Token Compromise: Codebase Stolen via PAT
Grafana Labs reports a source code breach after attackers leveraged a stolen GitHub Personal Access Token. Analysis of the impact and mitigation steps.
GitHub High-Severity Bug Discovered via AI Reverse Engineering
Wiz utilized AI reverse-engineering to uncover a high-severity vulnerability within GitHub, demonstrating advanced discovery methods for complex bugs.
Checkmarx Supply Chain Attack: GitHub Data Exfiltration Confirmed
Checkmarx confirms data exfiltration from its GitHub environment following a malicious code publication. Learn about the TTPs and mitigation strategies.
CVE-2026-3854: GitHub RCE via Malicious Git Push Command
A critical command injection vulnerability, CVE-2026-3854, allows authenticated users to achieve RCE on GitHub instances via a single git push operation.
Checkmarx GitHub Repository Data Leaked Following Supply Chain Attack
Checkmarx confirms internal GitHub repository data was published on the dark web following a March 2026 supply chain incident. Learn the impact and TTPs.
AI-Assisted Supply Chain Attack Targets GitHub Misconfigurations
Analysis of the AI-assisted PRT-scan supply chain attack targeting GitHub misconfigurations. Learn about automated threats and securing repositories.
Fake GitHub Repositories Deliver Vidar Infostealer via Claude Leak
Threat actors are exploiting the Claude Code leak, deploying fake GitHub repositories to distribute Vidar infostealer malware, targeting unsuspecting developers and
OpenAI Codex Vulnerability Exposed GitHub Tokens via OAuth Flaw
Researchers discovered a critical OpenAI Codex vulnerability allowing GitHub token theft via OAuth flaws, risking unauthorized access to private repositories.
OpenAI Patches ChatGPT Data Exfiltration and Codex Token Flaws
OpenAI addresses high-impact vulnerabilities in ChatGPT and Codex that enabled unauthorized data exfiltration and exposure of sensitive GitHub tokens.
GitGuardian 2026 Report: Analyzing the 34% Surge in Secrets Sprawl
GitGuardian's 2026 report reveals 29 million leaked secrets on GitHub in 2025. Learn how AI and hardcoded credentials impact enterprise security posture.