GitHub

2 minute read

Google Says Hackers Used AI to Develop a Zero-Day Exploit

Google researchers say hackers used AI to develop zero-day exploits, Android backdoors, and automated supply chain attacks targeting GitHub and PyPI.

byDeeba Ahmed

May 11, 2026

2 minute read

Google Fixes CVSS 10 Gemini CLI Vulnerability Enabling GitHub Issue-Based RCE

Google patches a CVSS 10 Gemini CLI vulnerability that allowed hackers to use prompt injection and privilege escalation for a full supply chain compromise.

byDeeba Ahmed

May 6, 2026

3 minute read

Hackers Use Hidden Website Instructions in New Attacks on AI Assistants

Cybersecurity researchers at Forcepoint uncover new indirect prompt injection attacks that use hidden website code to exploit AI assistants like GitHub Copilot.

byDeeba Ahmed

April 23, 2026

2 minute read

New CGrabber and Direct-Sys Malware Spread Through GitHub ZIP Files

Hackers spread CGrabber and Direct-Sys malware through GitHub ZIP files, bypassing security tools to steal passwords, crypto wallets, and user data.

byDeeba Ahmed

April 17, 2026

3 minute read

North Korean Hackers Abuse GitHub to Spy on South Korean Firms

Researchers from FortiGuard Labs have uncovered a high-severity spying campaign targeting South Korean companies. Discover how North Korean…

byDeeba Ahmed

April 3, 2026

4 minute read

Why GitHub Developers Are Targeted by Token Giveaway Scams

GitHub developers face rising giveaway scams. Verify repos, links, and maintainers before acting. Avoid rushed clicks, fake rewards, and risky wallet actions.

byOwais Sultan

April 2, 2026

OpenAI Codex Vulnerability Allowed Attackers to Steal GitHub Tokens

2 minute read

Security

OpenAI Codex Vulnerability Allowed Attackers to Steal GitHub Tokens

OpenAI Codex vulnerability allowed attackers to steal GitHub tokens via malicious branch names using hidden Unicode command injection flaw.

byDeeba Ahmed

March 30, 2026

2 minute read

Fake OpenClaw Token Giveaway Targets GitHub Devs with Wallet-Draining Scam

OX Security reveals a new phishing campaign targeting GitHub developers. Scammers use fake OpenClaw token giveaways to trick users into connecting and draining their crypto wallets

byDeeba Ahmed

March 25, 2026

2 minute read

New Vidar 2.0 Infostealer Spreads via Fake Game Cheats on GitHub, Reddit

The new infostealer campaign spreads Vidar 2.0 via fake game cheats on GitHub and Reddit, stealing crypto, login tokens, and files while targeting young gamers ignoring security warnings

byDeeba Ahmed

March 17, 2026

2 minute read

17% of 3rd-Party Add-Ons for OpenClaw Used in Crypto Theft and macOS Malware

Bitdefender Labs reveals that 17% of OpenClaw AI skills analyzed in February 2026 are malicious. With over 160,000…

byDeeba Ahmed

February 6, 2026

The Latest

AI Voice Cloning: The Technology Behind It, Who’s Building It, and Where It’s Headed

Critical ‘Claw Chain’ Vulnerabilities Put Thousands of OpenClaw AI Servers at Risk

The Next Cybersecurity Challenge May Be Verifying AI Agents

Hackers Use PyInstaller and AMSI Patching to Deliver XWorm RAT v7.4

GitHub

Google Says Hackers Used AI to Develop a Zero-Day Exploit

Google Fixes CVSS 10 Gemini CLI Vulnerability Enabling GitHub Issue-Based RCE

Hackers Use Hidden Website Instructions in New Attacks on AI Assistants

New CGrabber and Direct-Sys Malware Spread Through GitHub ZIP Files

North Korean Hackers Abuse GitHub to Spy on South Korean Firms

Why GitHub Developers Are Targeted by Token Giveaway Scams

OpenAI Codex Vulnerability Allowed Attackers to Steal GitHub Tokens

Fake OpenClaw Token Giveaway Targets GitHub Devs with Wallet-Draining Scam

New Vidar 2.0 Infostealer Spreads via Fake Game Cheats on GitHub, Reddit

17% of 3rd-Party Add-Ons for OpenClaw Used in Crypto Theft and macOS Malware

Lyrie.ai Joins First Batch of Anthropic’s Cyber Verification Program

LuxSci Launches Enterprise-Grade HIPAA-Compliant Email Security for Mid-Sized Healthcare Organizations

Criminal IP and Securonix ThreatQ Collaborate to Enhance Threat Intelligence Operations

Brinker Introduces a Novel Approach to Deepfake Detection

BreachLock Named Representative Vendor in the 2026 Gartner Market Guide for Adversarial Exposure Validation