The Hacker News

Checkmarx Confirms GitHub Repository Data Posted on Dark Web After March 23 Attack

Checkmarx data surfaced after March 23, 2026 supply chain attack, prompting repository lockdown and investigation, raising ...

GitHub Copilot shifts to usage-based pricing June 1 - why that's no surprise

Under the new approach, if you run out of credits, you can't use the service. GitHub plans to preview the new billing in ...
The Hacker News

Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

Eradani DevOps Fills the Gap AI Coding Tools Leave Behind on IBM i

While AI assistants generate the code, most IBM i shops have no pipeline to get it to production safely AI tools are ...
Security Boulevard

FIRESIDE CHAT: Leaked secrets are now the go-to attack vector — and AI is accelerating exposures

A consequential shift is underway in how enterprise breaches begin. The leaked credential — once treated as a hygiene problem ...

GlassWorm malware attacks return via 73 OpenVSX "sleeper" extensions

A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious ...
Corporate Compliance Insights

OpenClaw Reveals Hidden Security Risks of Agentic AI

This so-called shadow AI risk is already significant. A Microsoft study from October suggested that 71% of UK employees ...
Visual Studio Magazine

Devs Sound Off on Usage-Based Copilot Pricing Change: 'You Will Get Less, but Pay the Same Price'

GitHub Copilot is moving to usage-based billing on June 1, 2026, prompting user concerns about predictability, model access, monthly credit limits and whether unchanged plan prices will translate into ...

Shadow AI and agents like OpenClaw are hijacking corporate data too easily

Discover how Shadow AI agents are quietly bypassing traditional defenses.
Cybernews

The Netherlands launches self-hosted GitHub alternative

The Netherlands ditches GitHub and GitLab, launches government-controlled alternative amid digital sovereignty fears ...
Holistic AI

Shadow AI Discovery: Risk Scoring, Staging & One-Click Reconciliation

Unified AI governance: discover shadow AI, prioritize risk, and reconcile assets into an audit-ready inventory across all ...