In the new release, the version control system introduces the experimental git history command, for example, to correct ...

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

Bitwarden CLI 2026.4.0 was compromised via GitHub Actions in Checkmarx campaign, exposing secrets and distributing malicious ...

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

GitHub used as C2, new Cloudflare exfiltration domain found, linked to April 22 Checkmarx KICS compromise via Dependabot.

A compromised developer's repository serves as a worm-like infection vector to spread remote access Trojans (RATs) and other ...

The Proton team has released a roadmap of features it plans to launch later this year for its password manager, Proton Pass.

Check Point researchers have found that popular AI coding assistants are unintentionally leaking sensitive internal data, ...

Report's review of two years of telemetry from 22,000 developers and more than 4,000 teams found that AI coding tools are increasing software output but are also linked to more bugs, more incidents, ...

The compromise of a version of Bitwarden's CLI is connected to the ongoing Checkmarx supply chain campaign, but differences in the operational methods of both incidents are making it difficult to ...

AI coding adoption is exploding. But most engineering leaders are still measuring usage instead of outcomes. Read more in the ...

The Bitwarden security team confirms that a malicious version of the command-line client was briefly distributed.