github

Megalodon GitHub Attack: 5,561 Repositories Backdoored in 6 Hours — Are Your Projects at Risk?

May 22, 2026 · critical

North Korea's UNC1069 Backdoored Axios npm Package — 183 Million Weekly Downloads Exposed to WAVESHAPER.V2 Backdoor

April 1, 2026 · critical

GlassWorm ForceMemo: Stolen GitHub Tokens Used to Silently Inject Malware Into 240+ Python Repositories — Attack Still Active

March 17, 2026 · high

From a Stolen Token to Full AWS Admin Access in 72 Hours — The UNC6426 nx Supply Chain Attack Explained

March 11, 2026 · high