Okta’s source code has been stolen
An internal memo indicates that Okta's source code has been stolen by one or more unauthorized users. The organization claims the breach does not affect customers.
BleepingComputer obtained the internal memo from an anonymous source. Okta CSO David Bradbury writes that one or more unauthorized ... Read more
Hackers leak Intel Alder Lake BIOS source code
Website BleepingComputer reports that the source code of Intel's Alder Lake processor BIOS has recently been leaked. Intel has since confirmed the breach.
According to BleepingComputer, 6GB of data containing the source code of Intel's Alder Lake processor BIOS was published on 4chan and GitHub ... Read more
Auth0 warns that its source code repositories may have been breached
Auth0, an authentication service provider and Okta subsidiary, has reported a security incident impacting several of its code repositories.
Over 2,000 business clients from 30 countries utilize Auth0's authentication technology to verify over 42 million daily logins. Notable clients include AM... Read more
Popular password manager LastPass hit by cyberattack
Popular password manager LastPass fell victim to a cyberattack. Hackers managed to steal technical information.
LastPass, one of the largest and most popular password managers, fell victim to a cyberattack about two weeks ago. An "unauthorized party" penetrated the dev environment by compromisin... Read more
Microsoft confirms hack by Lapsus$
Microsoft confirmed a cyberattack by criminal group Lapsus$. Source code was captured.
In a post on its security blog, Microsoft explains the extent of Lapsus$'s access to its systems. A single account was compromised. In its own words, Microsoft's quick discovery limited the attack's damage.
... Read more
Lapsus$ cybercriminals claim major cyberattack on Samsung
Hacker group Lapsus$ claims to have stolen 190GB of confidential data from Samsung. This mainly involves source code for Samsung devices.
Last week, Lapsus$ claimed to have stolen 1TB of confidential data from Nvidia. In an attempt to back the claim, the criminal group published 20GB of the alle... Read more
AWS CodeGuru now discovers ‘secret information’ in code
AWS CodeGuru receives new functionality to improve code security. Among other things, the tool now leverages a Secrets Detector functionality to discover 'secret information' in source code.
Developers use AWS CodeGuru to detect defects and bugs in source code through machine learning and recomm... Read more
‘Trojan Source’ can inject malware into source code undetected
A new research paper has been published with details about a new technique that can be exploited to inject malware into source code without being detected. Named ‘Trojan Source' by Cambridge University researchers, the method involves the manipulation of source file encoding so that human viewers... Read more
GitHub CEO denies that their source code was hacked
CEO Nat Friedman calls the repo post a fake and promises to make impersonation more difficult.
Recently a site called Resynth (resynth1943.net) posted a link to a Wayback Machine snapshot of a GitHub repo that appeared to come from GitHub CEO Nat Friedman. The poster had labelled the repo as: "T... Read more
China is building a GitHub alternative amid trade war with the US
China wants to make a domestic version of GitHub, the open-source software development platform. The Chinese government is turning to an old and almost forgotten platform that was named Gitee. In a recent report from the Chinese Ministry of Industry and Information, they said that they want to turn... Read more