Infosecurity-magazine.com

Malicious Commands in GitHub Codespaces Enable RCE

A set of attack vectors in GitHub Codespaces have been uncovered that enable remote code execution (RCE) by opening a malicious repository or pull request. The findings by Orca Security, show how ...
Dark Reading

GlassWorm Malware Returns to Shatter Developer Ecosystems

More supply chain havoc from the GlassWorm threat has made its way into the software development mix, poisoning software components that have thousands of downstream users. Researchers with ...