Microsoft had to disable more than 70 GitHub repos this week after a nasty password-stealing malware infected them.

GitHub disabled 73 Microsoft repositories on June 5 after a malicious commit landed in an Azure project, in what researchers described as a supply chain attack aimed at developer workstations and AI ...

According to security firm Cloudsmith and community-driven malware analysis site OpenSourceMalware, which were some of the ...

This week on the GeekWire Podcast, we break down the news from Microsoft Build from Project Solara and the Scout agentic ...

GitHub disabled 73 Microsoft repos after the Miasma worm exploited previously compromised credentials to plant malware targeting AI coding agents.

Miasma hit 73 Microsoft repos across four GitHub orgs, forcing access disablement and exposing open-source trust risks.

There are now several AI coding assistants such as GitHub Copilot, Cursor, Claude Code and OpenAI Codex and these are ...

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.

The latest flare-up in the debate over AI-assisted coding did not come from a new model release or a benchmark result. It came from a single ...

The “concern is not with the defensive intent,” but rather that the clandestine trap “is aggressive in effect, and the party ...

IBM open-source security project Lightwell will use AI tools and over 20,000 engineers to help secure enterprise open-source software.

The controversy over vibe coding reached a new high this week after a developer added hidden instructions to his open source ...