Bleeping Computer

Malicious Visual Studio projects on GitHub push Keyzetsu malware

Threat actors are abusing GitHub automation features and malicious Visual Studio projects to push a new variant of the "Keyzetsu" clipboard-hijacking malware and steal cryptocurrency payments. The ...
Bleeping Computer

Over 3.1 million fake "stars" on GitHub projects used to boost rankings

GitHub has a problem with inauthentic "stars" used to artificially inflate the popularity of scam and malware distribution repositories, helping them reach more unsuspecting users. Stars are similar ...
CoinTelegraph

Hackers are making fake GitHub projects to steal crypto: Kaspersky

Kaspersky found that at least one victim lost 5 Bitcoin, worth around $442,000, to a malware-riddled fake project in November. Hackers are creating hundreds of fake GitHub projects aiming to dupe ...
Hosted on MSN

Python dethrones JavaScript as the most-used language on GitHub

There's been an upset in the Octoverse, as Python has unseated JavaScript as the most-used programming language on GitHub.… Python's ascendancy from the number-two slot, which it's held since knocking ...
CSOonline

Most popular generative AI projects on GitHub are the least secure

Researchers use the OpenSSF Scorecard to measure the security of the 50 most popular generative AI large language model projects on GitHub. Researchers from software supply chain security firm ...