CI/CD credential theft – Cyber Reports Cybersecurity News & Information

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

Cybersecurity Desk: A fast-moving software supply chain attack campaign known as “Mini Shai-Hulud” has compromised multiple widely used npm packages in the @antv ecosystem, raising fresh...

Cybersecurity21 hours ago

Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials

Cybersecurity Desk: A new software supply chain attack has been uncovered targeting widely used GitHub Actions workflows, where attackers reportedly manipulated repository tags to redirect them...

Cybersecurity3 weeks ago

🧑‍💻 Developer Workstations Now Recognized as a Critical Link in the Software Supply Chain

The modern software supply chain is no longer confined to repositories, CI/CD pipelines, or cloud infrastructure. Security researchers are increasingly warning that developer workstations themselves have...

Cyber Reports Cybersecurity News & Information

All posts tagged "CI/CD credential theft"

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials

🧑‍💻 Developer Workstations Now Recognized as a Critical Link in the Software Supply Chain

Categories

Recent Posts

Recent Comments

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

Melis Platform CMS patched for critical RCE flaw

Warning: Google Alerts abused to push fake Adobe Flash updater

MaginotDNS attacks exploit weak checks for DNS cache poisoning

Illinois’ financial crisis could bring the state to a halt

The final 6 ‘Game of Thrones’ episodes might feel like a full season

New Season 8 Walking Dead trailer flashes forward in time