Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...
Computerworld

Again? Microsoft hit for poor security in major SharePoint hack

The company has been called out repeatedly for inadequate security practices, and now we have another case in point: a successful SharePoint hack that’s among the worst in Microsoft’s history. Once ...