Threat actors behind the virulent Shai-Hulud worm that wreaked havoc in open npm repositories toward the end of 2025 apparently are trying out a new strain that comes with slight modifications. Security researchers with Aikido Security, who have been tracking Shai-Hulud for months, wrote in a report that was updated January 2 that there doesn’t […]
Cursor Acquires Graphite to Streamline AI-Powered Development
Cursor, the artificial intelligence (AI) coding assistant valued at $29 billion, has acquired code review startup Graphite to address what Cursor CEO Michael Truell describes as a growing bottleneck in software development. The companies declined to disclose financial terms but confirmed the transaction involves a mix of cash and equity. While AI has dramatically accelerated […]
WhiteCobra Targets Developers with Dozens of Malicious Extensions
A threat group is dropping two dozen malicious extensions into the VSCode and Open VSX marketplaces, targeting developers using the VSCode, Cursor, and Windsurf source code editing tools with the goal of draining cryptocurrency wallets. Researchers with security firm Koi Security have been tracking WhiteCobra’s activities for more than a year as the bad actors […]
Open Source Software Security Concerns with Spike Curtis
Spike Curtis, principal engineer for Coder Technologies, dives into why open source software security concerns are valid, and why the only viable option is to invest more in securing software supply chains to mitigate potential threats. While open source benefits from community oversight, organizations must vet the projects they rely on to avoid security gaps. […]
Fake Stars in GitHub a Growing Security Threat, Analysis Finds
There was a surge of inauthentic stars on code repositories in 2024, ramping up the threat of software supply chain attacks.
Microsoft GitHub Alignment Fuels Birth of the AI Developer
Microsoft is partnering with GitHub to enable its 100 million+ developers to build AI applications directly on the GitHub platform.
Delta CEO Puts Price Tag on CrowdStrike Damage: $500 Million
Delta Air Lines Inc. Chief Executive Ed Bastian has put a price tag on CrowdStrike Inc.’s debilitating outage to his airline, $500 million, leaving the company “no choice” but to seek damages from five days of disruptions.
SEO Optimized
Perhaps the desire for SEO-optimized everything has gone too far.
Sysdig Identifies Cyberattacks on GitLab Platforms Using Binaries
Sysdig Threat Research Team uncovers cyberattacks using binaries written in Go and .NET are compromising on-premises editions of GitLab.
Zenhub Brings Generative AI to Software Project Management
Zenhub brings generative artificial intelligence to software project management to help streamline DevOps workflows.
- 1
- 2
- 3
- 4
- Next Page »