Sometime in late May 2026, a poisoned update slipped into the @antv family of JavaScript visualization libraries, the ...

The Megalodon supply chain attack poisoned over 5,500 GitHub repositories via automated commits injecting GitHub Actions workflows.

The code hosting giant GitHub said it was investigating a breach but said there was no evidence of customer data theft.

A single browser tab, a single click on “Install,” and a cybercriminal group called TeamPCP was inside GitHub’s own house.

An archive of roughly 4,000 repositories is reportedly being offered for sale on the dark web, by threat actors known as ...

A GitHub employee has unwittingly allowed 3,800 internal repositories to be breached after a device compromise with a ...

GitHub is investigating a breach of its internal repositories after the TeamPCP hacker group claimed to have accessed ...

GitHub confirms that 3,800 internal repositories were breached after a developer installed a malicious VS Code extension.

GitHub has confirmed that roughly 3,800 internal repositories were hacked after an employee installed an infected VS Code ...

The Microsoft-owed software developer platform, GitHub, has confirmed a third-party has gained unauthorized access to 3800 ...

Learn how the Understand-Anything Claude Code plugin transforms complex repositories into interactive knowledge graphs to ...