source code Archives

Data Breaches

Grafana Says Codebase and Other Data Stolen via TanStack Supply Chain Attack

Hackers accessed Grafana’s GitHub repositories after a token compromised in the TanStack attack was not rotated.

Ionut ArghireMay 22, 2026

Malware & Threats

First Shai-Hulud Worm Clones Emerge

At least one threat actor has adopted the recently released malware source code in attacks against NPM developers.

Ionut ArghireMay 18, 2026

Cybercrime

Grafana Confirms Breach After Hackers Claim They Stole Data

Grafana appears to have been targeted by Coinbase Cartel, a cybercrime group linked to ShinyHunters, Scattered Spider, and Lapsus$.

Eduard KovacsMay 18, 2026

Malware & Threats

TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code

The hacking group is encouraging miscreants to use the code in supply chain attacks, promising monetary rewards.

Ionut ArghireMay 15, 2026

Data Breaches

SailPoint Discloses GitHub Repository Hack

The incident occurred on April 20 and did not affect customer data in the company’s production and staging environments.

Ionut ArghireMay 11, 2026

Data Breaches

Ransomware Group Takes Credit for Trellix Hack

RansomHouse has published several screenshots to demonstrate access to internal Trellix services.

Eduard KovacsMay 8, 2026

Data Breaches

Trellix Source Code Repository Breached

The cybersecurity firm’s investigation has not found any impact on its source code release or distribution process.

Eduard KovacsMay 4, 2026

Data Breaches

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts

More information has come to light on the cyberattack disclosed this week by F5, including on attribution and potential risks.

Eduard KovacsOctober 16, 2025

Data Breaches

F5 Says Nation-State Hackers Stole Source Code and Vulnerability Data

F5 shared few details on the threat actor, but the attack profile seems to point to China.

Eduard KovacsOctober 15, 2025

Data Breaches

Red Hat Confirms GitLab Instance Hack, Data Theft

Hackers claim to have stolen 28,000 private repositories, including data associated with major companies that use Red Hat services.

Eduard KovacsOctober 3, 2025

Application Security

GitHub Announces General Availability of Security Campaigns

GitHub security campaigns make it easier for developers and security teams to collaborate on fixing vulnerabilities in their applications.

Eduard KovacsApril 10, 2025

Data Protection

39 Million Secrets Leaked on GitHub in 2024

GitHub has announced new capabilities to help organizations and developers keep secrets in their code protected.

Ionut ArghireApril 3, 2025

Malware & Threats

Source Code of $3,000-a-Month macOS Malware ‘Banshee Stealer’ Leaked

The Banshee Stealer macOS malware operation, which emerged earlier this year, was reportedly shut down following a source code leak.

Eduard KovacsNovember 27, 2024

Data Breaches

Nokia Says Impact of Recent Source Code Leak Is Very Limited

After the hacker IntelBroker leaked stolen source code, Nokia said the impact of the cybersecurity incident is limited.

Eduard KovacsNovember 8, 2024

Application Security

US, Allies Warn of Memory Unsafety Risks in Open Source Software

Most critical open source software contains code written in a memory unsafe language, US, Australian, and Canadian government agencies warn.

Ionut ArghireJune 27, 2024

Application Security

‘Phantom’ Source Code Secrets Haunt Major Organizations

Aqua Security shows that code in repositories remains accessible even after being deleted or overwritten, continuing to leak secrets.

Ionut ArghireJune 27, 2024

Data Breaches

New York Times Responds to Source Code Leak

The New York Times has issued a statement after someone leaked source code allegedly belonging to the news giant.

Eduard KovacsJune 10, 2024

Data Breaches

Mercedes Source Code Exposed by Leaked GitHub Token

A leaked token provided unrestricted access to the entire source code on Mercedes-Benz’s GitHub Enterprise server.

Ionut ArghireJanuary 31, 2024

Application Security

Thousands of Popular Websites Leaking Secrets

Truffle Security has discovered thousands of popular websites leaking their secrets, including .git directories and AWS and GitHub keys.

Ionut ArghireSeptember 6, 2023

Malware & Threats

Threat Actors Adopt, Modify Open Source ‘SapphireStealer’ Information Stealer

Cisco has observed multiple threat actors adopting the SapphireStealer information stealer after its source code was released on GitHub.

Ionut ArghireSeptember 1, 2023

SECURITYWEEK NETWORK:

ICS:

All posts tagged "source code"

Data Breaches

Grafana Says Codebase and Other Data Stolen via TanStack Supply Chain Attack

Malware & Threats

First Shai-Hulud Worm Clones Emerge

Cybercrime

Grafana Confirms Breach After Hackers Claim They Stole Data

Malware & Threats

TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code

Data Breaches

SailPoint Discloses GitHub Repository Hack

Data Breaches

Ransomware Group Takes Credit for Trellix Hack

Data Breaches

Trellix Source Code Repository Breached

Data Breaches

F5 Hack: Attack Linked to China, BIG-IP Flaws Patched, Governments Issue Alerts

Data Breaches

F5 Says Nation-State Hackers Stole Source Code and Vulnerability Data

Data Breaches

Red Hat Confirms GitLab Instance Hack, Data Theft

Application Security

GitHub Announces General Availability of Security Campaigns

Data Protection

39 Million Secrets Leaked on GitHub in 2024

Malware & Threats

Source Code of $3,000-a-Month macOS Malware ‘Banshee Stealer’ Leaked

Data Breaches

Nokia Says Impact of Recent Source Code Leak Is Very Limited

Application Security

US, Allies Warn of Memory Unsafety Risks in Open Source Software

Application Security

‘Phantom’ Source Code Secrets Haunt Major Organizations

Data Breaches

New York Times Responds to Source Code Leak

Data Breaches

Mercedes Source Code Exposed by Leaked GitHub Token

Application Security

Thousands of Popular Websites Leaking Secrets

Malware & Threats

Threat Actors Adopt, Modify Open Source ‘SapphireStealer’ Information Stealer

Featured

ICS/OT

Iranian Cyber Group Handala Claims Cal Water Hack

Cybercrime

Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters

Incident Response

Alert Fatigue Is Becoming a Security Threat of Its Own

ICS/OT

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

Vulnerabilities

Microsoft Patches Exploited Exchange Server Vulnerability

ICS/OT

Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers

Vulnerabilities

ServiceNow Patches Vulnerability Exploited Against Some Customers

Latest News

Artificial Intelligence

Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls

Management & Strategy

In Other News: Google Security Layoffs, AudiA6 Takedown, $400 Million Coupang Fine

Artificial Intelligence

Industry Reactions to Claude Fable 5: Feedback Friday

Vulnerabilities

Ivanti Sentry Exploitation Attempts Hitting Honeypots

Vulnerabilities

Chrome 149 Update Patches 28 Vulnerabilities

Artificial Intelligence

Anthropic Disputes Fable 5 AI Jailbreak

Cybercrime

Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters

Daily Briefing Newsletter