News

GitHub confirms breach of 3,800 repos via malicious VSCode extension

Bys s May 21, 2026

Sergiu Gatlan reports: GitHub has confirmed that roughly 3,800 internal repositories were breached after one of its employees installed a malicious VS Code extension. The company has since removed the unnamed trojanized extension from the VS Code marketplace and has secured the compromised device. “Yesterday we detected and contained a compromise of an employee device…

Source

News

DeepSpeed: a tuning tool for large language models
Bys s December 23, 2024

SophosAI’s framework for upgrading the performance of LLMs for cybersecurity tasks (or any other specific task) is now open source.

Read More DeepSpeed: a tuning tool for large language models
News

Details Disclosed for Mercedes-Benz Infotainment Vulnerabilities
Bys s January 20, 2025

Kaspersky has disclosed the details of over a dozen vulnerabilities discovered in a Mercedes-Benz MBUX infotainment system. The post Details Disclosed for Mercedes-Benz Infotainment Vulnerabilities appeared first on SecurityWeek.

Read More Details Disclosed for Mercedes-Benz Infotainment Vulnerabilities
News

Salesloft Takes Drift Offline After OAuth Token Theft Hits Hundreds of Organizations
Bys s September 2, 2025

Salesloft on Tuesday announced that it’s taking Drift temporarily offline “in the very near future,” as multiple companies have been ensnared in a far-reaching supply chain attack spree targeting the marketing software-as-a-service product, resulting in the mass theft of authentication tokens. “This will provide the fastest path forward to comprehensively review the application and build

Read More Salesloft Takes Drift Offline After OAuth Token Theft Hits Hundreds of Organizations
News

Cisco Patches Critical Vulnerability in Meeting Management
Bys s January 23, 2025

Cisco has released patches for three vulnerabilities, including a critical privilege escalation bug and a DoS flaw for which exploit code exists. The post Cisco Patches Critical Vulnerability in Meeting Management appeared first on SecurityWeek.

Read More Cisco Patches Critical Vulnerability in Meeting Management
News

HHS Office for Civil Rights Settles HIPAA Ransomware Cybersecurity Investigation for $10,000
Bys s January 15, 2025

Settlement with Northeast Surgical Group marks OCR’s 10th ransomware enforcement action and 4th enforcement action in OCR’s Risk Analysis Initiative. Today the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced a settlement with Northeast Surgical Group, P.C. (NESG), a provider of surgical services in Michigan, for a potential violation…

Read More HHS Office for Civil Rights Settles HIPAA Ransomware Cybersecurity Investigation for $10,000
News

Attorney General Ken Paxton Demands Information from Blue Cross Blue Shield of Texas and Conduent as Part of Investigation into Largest Data Breach in U.S. History
Bys s February 13, 2026

Their headline was, “Attorney General Ken Paxton Demands Information from Blue Cross Blue Shield of Texas and Conduent as Part of Investigation into Largest Data Breach in U.S. History,” but that seemed terribly wrong. Is Texas Attorney General Ken Paxton using AI as for his research? “Largest Data Breach in U.S. History?” Doesn’t he remember……

Read More Attorney General Ken Paxton Demands Information from Blue Cross Blue Shield of Texas and Conduent as Part of Investigation into Largest Data Breach in U.S. History

Similar Posts