Microsoft has cut off access to dozens of its open source projects hosted on GitHub as it investigates how hackers apparently breached the projects and injected password-stealing malware into the code.
Many of the affected projects relate to Microsoft’s cloud service Azure and other tools used by developers to code with AI development apps, such as Claude Code, Gemini’s command line interface, and VS Code.
Read more…
Source: TechCrunch News
Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox
Related:
- Threat landscape for industrial automation systems. H2 2023
March 19, 2024
In the second half of 2023, the percentage of ICS computers on which malicious objects were blocked decreased by 2.1 pp to 31.9%. In H2 2023, building automation once again had the highest percentage of ICS computers on which malicious objects were blocked of all industries that we looked at. Oil and Gas was the only ...
- New Zealand: Hackers email Mediaworks data breach victims demanding NZ$820
March 18, 2024
Hackers connected to a MediaWorks data breach are demanding a ransom of US$500 (NZ$820) in cryptocurrency from one of the victims of the data leakage. MediaWorks has confirmed a database containing information from individuals who entered its online competitions has been breached. It follows a post on an internet forum on Thursday, which claimed to have ...
- Ethereum’s Create2: A Double-Edged Sword In Blockchain Security
March 18, 2024
Ethereum’s CREATE2 function is being exploited by attackers to compromise the security of digital wallets, bypassing traditional security measures and facilitating unauthorized access to funds. The attack method involves tricking users into approving transactions for smart contracts that haven’t been deployed yet, allowing cybercriminals to later deploy malicious contracts and steal cryptocurrencies. This vulnerability highlights the ...
- Tech giant Fujitsu says it was hacked, warns of data breach
March 18, 2024
Multinational technology giant Fujitsu confirmed a cyberattack in a statement Friday, and warned that hackers may have stolen personal data and customer information. “We confirmed the presence of malware on multiple work computers at our company, and as a result of an internal investigation, we discovered that files containing personal information and customer information could be ...
- Mandatory cyber requirements after Change Healthcare attack opposed by health sector
March 18, 2024
The American Hospital Association has opposed mandatory cybersecurity requirements proposed for the healthcare sector following the ransomware attack against Change Healthcare, which has resulted in widespread prescription processing outages across the U.S. “Imposing fines or cutting Medicare payments would diminish hospital resources needed to combat cybercrime and would be counterproductive to our shared goal of preventing ...
- Southeast Asia’s three-nation partnership to fight cyber threats
March 17, 2024
From rampant job scams to sophisticated e-commerce attacks, cyber threats in Southeast Asia are skyrocketing. Singapore reportedly had more than 46,000 cybercrime cases in 2023, including job scams and e-commerce scams, the highest since 2016. Things were almost as bad in Malaysia. Cases involving social media scams reportedly increased by 37 percent from January to November 2023 ...