The Hacker News

Npm Package Targeting GitHub-Owned Repositories Flagged as Red Team Exercise

Cybersecurity researchers have discovered a malicious npm package named "@acitons/artifact" that typosquats the legitimate " ...

AI Giants Accidentally Leaking Secrets on GitHub

Research by Wiz shows that industry titans, with combined valuations exceeding $400 billion, have left the equivalent of ...
SecurityWeek

Many Forbes AI 50 Companies Leak Secrets on GitHub

Wiz has analyzed GitHub repositories pertaining to the world’s largest AI companies and found that many had leaked verified ...

Hackers are saving Google's abandoned Nest thermostats with open-source firmware

Cody Kociemba, the developer behind the Hack/House collaborative project, is waging war against Google. The tech giant ...
CSO Online

AI startups leak sensitive credentials on GitHub, exposing models and training data

Experts say the leaks highlight how fast-growing AI firms may be prioritizing innovation over basic DevSecOps hygiene, ...