GitHub

3 minute read

North Korean Hackers Abuse GitHub to Spy on South Korean Firms

Researchers from FortiGuard Labs have uncovered a high-severity spying campaign targeting South Korean companies. Discover how North Korean…

byDeeba Ahmed

April 3, 2026

4 minute read

Why GitHub Developers Are Targeted by Token Giveaway Scams

GitHub developers face rising giveaway scams. Verify repos, links, and maintainers before acting. Avoid rushed clicks, fake rewards, and risky wallet actions.

byOwais Sultan

April 2, 2026

OpenAI Codex Vulnerability Allowed Attackers to Steal GitHub Tokens

2 minute read

Security

OpenAI Codex Vulnerability Allowed Attackers to Steal GitHub Tokens

OpenAI Codex vulnerability allowed attackers to steal GitHub tokens via malicious branch names using hidden Unicode command injection flaw.

byDeeba Ahmed

March 30, 2026

2 minute read

Fake OpenClaw Token Giveaway Targets GitHub Devs with Wallet-Draining Scam

OX Security reveals a new phishing campaign targeting GitHub developers. Scammers use fake OpenClaw token giveaways to trick users into connecting and draining their crypto wallets

byDeeba Ahmed

March 25, 2026

2 minute read

New Vidar 2.0 Infostealer Spreads via Fake Game Cheats on GitHub, Reddit

The new infostealer campaign spreads Vidar 2.0 via fake game cheats on GitHub and Reddit, stealing crypto, login tokens, and files while targeting young gamers ignoring security warnings

byDeeba Ahmed

March 17, 2026

2 minute read

17% of 3rd-Party Add-Ons for OpenClaw Used in Crypto Theft and macOS Malware

Bitdefender Labs reveals that 17% of OpenClaw AI skills analyzed in February 2026 are malicious. With over 160,000…

byDeeba Ahmed

February 6, 2026

3 minute read

Hackers Abuse Popular Monitoring Tool Nezha as a Stealth Trojan

Cybersecurity firm Ontinue reveals how the open-source tool Nezha is being used as a Remote Access Trojan (RAT) to bypass security and control servers globally.

byDeeba Ahmed

December 22, 2025

2 minute read

GitHub Scanner for React2Shell (CVE-2025-55182) Turns Out to Be Malware

A GitHub repository posing as a vulnerability scanner for CVE-2025-55182, also referred to as “React2Shell,” was exposed as…

byWaqas

December 15, 2025

PromptPwnd Vulnerability Exposes AI driven build systems to Data Theft

2 minute read

Security

PromptPwnd Vulnerability Exposes AI driven build systems to Data Theft

Aikido Security exposes a new AI prompt injection flaw in GitHub/GitLab pipelines, letting attackers steal secrets. Major companies affected.

byDeeba Ahmed

December 5, 2025

Chinese Tech Firm Leak Reportedly Exposes State Linked Hacking

2 minute read

Security

Chinese Tech Firm Leak Reportedly Exposes State Linked Hacking

A massive data leak reportedly at Chinese firm Knownsec (Chuangyu) exposed 12,000 files detailing state-backed 'cyber weapons' and spying on over 20 countries. See the details, including 95GB of stolen Indian immigration data.

byDeeba Ahmed

November 14, 2025

The Latest

OpenAI Launches GPT-5.4-Cyber to Boost Defensive Cybersecurity

Cybersecurity Risks of Hiring a Virtual Assistant and How to Protect Your Business

Researchers Say Fiverr Left User Files Open to Google Search

Anonymizing Network Traffic: A Dive into SOCKS5 and Data Encryption

GitHub

North Korean Hackers Abuse GitHub to Spy on South Korean Firms

Why GitHub Developers Are Targeted by Token Giveaway Scams

OpenAI Codex Vulnerability Allowed Attackers to Steal GitHub Tokens

Fake OpenClaw Token Giveaway Targets GitHub Devs with Wallet-Draining Scam

New Vidar 2.0 Infostealer Spreads via Fake Game Cheats on GitHub, Reddit

17% of 3rd-Party Add-Ons for OpenClaw Used in Crypto Theft and macOS Malware

Hackers Abuse Popular Monitoring Tool Nezha as a Stealth Trojan

GitHub Scanner for React2Shell (CVE-2025-55182) Turns Out to Be Malware

PromptPwnd Vulnerability Exposes AI driven build systems to Data Theft

Chinese Tech Firm Leak Reportedly Exposes State Linked Hacking

Security Risk Advisors Purple Team Participants Can Now Earn CPE Credits

Mallory Launches AI-Native Threat Intelligence Platform, Turning Global Threat Data Into Prioritized Action

AI Future: The Leading International AI and Web3 Forum to Take Place in April

Cybersecurity Firm TAC Security Hits 10,000 Clients, Enters Top 5 in Global VM & AppSec

2026 Cybersecurity Excellence Awards Winners Announced during RSA Conference as AI Security Dominates