The Open Source Security Foundation today launched its Malicious Packages Repository, an open-source system for collecting and publishing cross-ecosystem reports of malicious packages. Claimed to be ...

A Yandex source code repository allegedly stolen by a former employee of the Russian technology company has been leaked as a Torrent on a popular hacking forum. Yesterday, the leaker posted a magnet ...

Gartner issued a same-day advisory after Anthropic leaked Claude Code's full architecture. CrowdStrike CTO Elia Zaitsev and Enkrypt AI CSO Merritt Baer weigh in on agent permissions and derived IP ...

Anthropic executives said it was an accident and retracted the bulk of the takedown notices.

YARMOUTH, Maine – It’s been a hard year for security at identity and access management company Okta, with its most recent data breach incident causing the company to lose its source code to threat ...

Okta Inc. has experienced a data breach in which hackers accessed some of its source code repositories, BleepingComputer reported today. Nasdaq-listed Okta provides an identity management platform ...

While Anthropic has attempted to contain the leak damage with takedown requests, the AI agent's code unsurprisingly spread ...

Researchers have uncovered yet another supply chain attack targeting an open source code repository, showing that the technique, which has gained wide use in the past few years, isn’t going away any ...

Some of Twitter's proprietary source code had been publicly available on Github for nearly three months, according to information gleaned from a DMCA Takedown request filed on March 24. GitHub is the ...

The volume of malicious activity targeting upstream open source code repositories has hit triple-digit growth over the past three years, according to Sonatype. The security vendor claimed in newly ...

The source code of Anthropic's CLI tool Claude Code was accidentally made publicly accessible via a source map in the npm registry.