GovInfoSecurity

Zero Day: 700 Instances of Self-Hosted Git Service Exploited

An attacker has been exploiting a zero-day vulnerability in Gogs, an open-source and popular Git service that allows for self ...
Techzine Europe

Docker Hub contains treasure trove of 10,000+ images with exposed secrets

Security research firm Flare discovered over 10,000 Docker Hub images containing exposed secrets during a single month of ...
Infosecurity Magazine

Malware Discovered in 19 Visual Studio Code Extensions

A new campaign involving 19 malicious Visual Studio Code extensions used a legitimate npm package to embed malware in ...

Malicious VSCode Marketplace extensions hid trojan in fake PNG file

A stealthy campaign with 19 extensions on the VSCode Marketplace has been active since February, targeting developers with ...
Dark Reading

ClickFix Style Attack Uses Grok, ChatGPT for Malware Delivery

A new twist on the social engineering tactic is making waves, combining SEO poisoning and legitimate AI domains to install ...
eWeek

Photoshop Invades ChatGPT, No Install Needed

No installs. No steep learning curve. Just a required Adobe sign-in to use Photoshop, Express, or Acrobat.
Hackaday

Iteration3D Is Parametric Python In The Cloud

It’s happened to all of us: you find the perfect model for your needs — a bracket, a box, a cable clip, but it only comes in ...